The United Kingdom's Foreign, Commonwealth and Development Office (FCDO) has sanctioned Xinbi, a Chinese-language cryptocurrency-based online marketplace that sells stolen data and satellite internet equipment to scam networks in Southeast Asia. [...]
Russian police arrested a Taganrog resident believed to be the owner of LeakBase, a major online forum used by cybercriminals to buy and sell stolen data and hacking tools. [...]
Cloud Android phones fuel financial fraud, evading detection and enabling dropper accounts
The FBI has warned that Iranian hacking group Handala has been targeting opponents of the regime since 2023
The UK’s financial regulator has issued new rules to make incident and third-party reporting clearer
Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools
Ericsson data breach affects 15k employees/customers after third-party service provider compromise
Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast
A global operation has resulted in the takedown of popular cybercrime forum LeakBase
Cloudflare Threat Report warns that AI tools enable attackers who lacked required skills to generate effective attacks rapidly and at scale
Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors
Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches
The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking group
DDoS attack frequency has risen to ‘alarming levels,’ warns Radware report
Security researchers have challenged end-to-end encryption claims from popular commercial password managers
Dutch telco Odido has revealed a major data breach impacting over six million customers
Hundreds of thousands of users have downloaded malicious AI extensions masquerading as ChatGPT, Gemini, Grok and others, warn cybersecurity researchers at LayerX
New TrendAI report warns that most security tools can’t protect against attacks on AI skills artifacts
Substack did not specify the number of users affected by the data breach
A supply chain attack on Notepad++ update process was linked to compromised hosting infrastructure