22+ hour, 34+ min ago  (426+ words) A newly discovered cyberespionage campaign by the Iranian state-sponsored group APT-C-49, also known as Oil Rig or APT34, has revealed a highly sophisticated attack chain that hides malicious configurations inside seemingly harmless images hosted on Google Drive. Using recent Iranian protests…...

20+ hour, 12+ min ago  (364+ words) Phishing-as-a-service (Phaa S) has rapidly transformed the global cybercriminal landscape over the last few years. By drastically lowering the technical barriers to entry, these platforms enable virtually anyone to launch massive credential harvesting and fraud operations. To shed light on this…...

22+ hour, 38+ min ago  (358+ words) Cybersecurity researchers from Cyber Proof have identified a highly evasive variant of the Click Fix malware campaign. This new iteration abuses native Windows utilities, specifically the cmdkey and regsvr32 tools, to infect systems without dropping traditional malware files to the local…...

17+ hour, 4+ min ago  (333+ words) Whats App is advancing its privacy-first strategy by developing a proprietary cloud backup service with mandatory end-to-end encryption (E2 EE), aiming to eliminate reliance on third-party storage platforms like Google Drive and Apple i Cloud. Whats App is actively building an…...

22+ hour, 36+ min ago  (362+ words) A major incident involving a Claude Opus 4. 6-powered AI coding agent has raised serious concerns about AI safety and infrastructure security. The agent, operating through the Cursor editor, accidentally deleted the entire production database and backups of the Saa S…...

22+ hour, 41+ min ago  (388+ words) Security researchers from Threat Labz have uncovered a deceptive threat hiding within the official Google Play Store. A fake document reader application, designed to look like a standard file management utility, was found secretly delivering the dangerous Anatsa Android banking…...

1+ day, 16+ hour ago  (399+ words) The study highlights growing concerns around the effectiveness of AI-driven security tools in detecting advanced threats targeting Linux environments. As Linux continues to dominate cloud infrastructure, high-performance computing, and Io T ecosystems, it has become an increasingly attractive target for…...

1+ day, 15+ hour ago  (287+ words) Microsoft has officially introduced a new enterprise-focused policy that allows IT administrators to remove the Windows 11 Copilot app from managed devices, signaling a major shift toward greater control over AI feature deployment in corporate environments. The new policy, named Remove…...

1+ day, 17+ hour ago  (250+ words) Google has released urgent security updates to fix a critical vulnerability in its Gemini CLI and associated Git Hub Action, exposing CI/CD pipelines to remote code execution (RCE) attacks. The vulnerability was discovered by security researchers Elad Meged of…...

1+ day, 17+ hour ago  (371+ words) Open Claw, a fast-growing open-source autonomous AI agent framework, has released critical security updates to fix three moderate-severity vulnerabilities that could lead to serious security risks. These flaws impact npm package versions released before 2026. 4. 20 and could allow attackers to bypass…...