$290 Million Crypto Heist Raises Alarm on DeFi Security Risks
A major cryptocurrency theft involving Kelp DAO has brought renewed attention to the growing risks within decentralized finance ecosystems. The incident, which reportedly resulted in losses of around $290 million, has been linked to threat actors believed to be associated with North Korean cyber operations. This event highlights how sophisticated attackers are increasingly targeting blockchain […]
MiningDropper on Android: A Growing Threat Delivering Infostealers and Banking Malware
A new Android based threat campaign is drawing attention for its ability to deliver multiple forms of malware through a single infection chain. Known as MiningDropper, this approach is being used by attackers to distribute infostealers, remote access tools, and banking malware, creating a layered and highly effective attack strategy. This development highlights how mobile […]
A Small Character, A Big Risk: iPhone Passcode Bug Highlights Hidden Security Gaps
A recently identified issue affecting Apple iPhone devices has drawn attention to how even minor input inconsistencies can create unexpected security risks. Apple is currently working on a fix for a passcode related bug linked to a missing character in the Czech keyboard layout. While the issue may appear niche at first glance, it reveals […]
Payouts King Emerges: A New Ransomware Threat Built on Familiar Tactics
A new ransomware operation known as Payouts King has surfaced, with links to former affiliates of BlackBasta. This development signals yet another evolution in the ransomware landscape, where experienced threat actors regroup and relaunch under new identities. The emergence of Payouts King reinforces how resilient and adaptive ransomware ecosystems have become. What We Know About […]
When Comments Turn Malicious: Prompt Injection Risks in AI Coding Agents
A new class of vulnerabilities is drawing attention across the developer ecosystem, impacting AI powered tools such as Claude Code, Gemini CLI, and GitHub Copilot. Researchers have demonstrated how simple comments embedded in code repositories, issues, or pull requests can be weaponized to manipulate these agents through prompt injection attacks. This highlights a critical shift […]
Small Oversight, Massive Risk: How a Low Cost Domain Could Have Exposed 25,000 Endpoints
A recent security finding has revealed how a simple lapse involving a low cost domain could have put nearly 25,000 endpoints at risk, including systems within operational technology environments and government networks. This incident underscores how seemingly minor misconfigurations can lead to large scale exposure across critical infrastructure. The case highlights the importance of managing […]
Obsidian Plugin Exploited for Cross Platform Malware Delivery
A newly uncovered campaign shows how attackers are weaponizing the Shell Commands plugin in Obsidian to execute cross platform malware attacks. This development highlights the growing risk of trusted productivity tools being manipulated to deliver malicious payloads across different operating systems. As modern workflows increasingly rely on extensible applications and plugins, attackers are finding new […]
APT37 Expands Attack Surface Using Social Platforms and Tampered Installers
A new targeted intrusion campaign linked to APT37 highlights how threat actors are evolving their tactics by abusing trusted platforms like Facebook and Telegram, combined with malicious software installers. This approach reflects a growing trend where attackers blend social engineering with technical compromise to maximize success rates. How the Attack Unfolds The campaign relies on […]
A New Layer of Protection: Google Introduces Device Bound Sessions in Chrome
In a significant move to strengthen browser security, Google has introduced device bound sessions in Google Chrome to combat cookie theft attacks. This innovation aims to reduce the risk of session hijacking, a common technique used by attackers to gain unauthorized access to user accounts. As cyber threats continue to evolve, this step reflects a […]
Evolving Threat Landscape: MuddyWater Adopts Malware as a Service in ChainShell Campaign
A new wave of cyber activity has revealed that MuddyWater is leveraging Russian Malware as a Service offerings to enhance its latest campaign, known as ChainShell. This shift reflects a growing trend where threat actors combine state backed intent with readily available cybercrime tools to scale operations and increase efficiency. The development signals a concerning […]