cybersecurity threat

Artificial Intelligence

Chrome Extensions Stole ChatGPT & DeepSeek Data from 900K Users

January 8, 2026
Diagram showing threat actor exploiting Chrome extensions to exfiltrate data.

Malicious Chrome extensions, posing as legitimate AI tools, stole private conversations and browsing data from over 900,000 users by secretly…

Read More »
Business

VVS Stealer Malware Hijacks Discord Accounts Using Python

January 7, 2026
Computer screen displays Discord logo with code overlay, suggesting malware.

A new, affordable Python-based malware called **VVS Stealer** is actively compromising Discord accounts by stealing tokens and data, using obfuscation…

Read More »
Business

Critical Flaw Exposes 10K+ Fortinet Firewalls to 2FA Bypass

January 4, 2026
Fortinet logo against a red and black abstract digital background.

A critical five-year-old Fortinet firewall flaw (CVE-2020-12812) allows attackers to bypass two-factor authentication by altering a username's case, and over…

Read More »
AI & Tech

Beware: Google Ads Push Malware via Fake ChatGPT, Grok Guides

December 12, 2025
Apple logo in a red triangular tunnel, perspective view.

A new malware campaign called "ClickFix" uses Google Ads impersonating AI platform guides to distribute the AMOS infostealer, tricking users…

Read More »
BigTech Companies

Beware Malicious VS Code Extensions Stealing Data

December 10, 2025
Hands typing on a laptop displaying Visual Studio Code logo and interface.

Malicious extensions named Bitcoin Black and Codo AI were discovered on the VS Code marketplace, using social engineering and functional…

Read More »
Business

Inside DragonForce Ransomware and Scattered Spider

December 5, 2025
Shadow puppet show of a king on horseback fighting a dragon.

The DragonForce ransomware operation has evolved into a "cartel" model, offering affiliates high profit shares to scale its impact, and…

Read More »
Cybersecurity

RondoDox Botnet Exploits Critical XWiki Server Flaw

November 19, 2025
A large group of identical red robots with glowing white eyes stand in formation.

The RondoDox botnet malware is actively exploiting a critical remote code execution vulnerability (CVE-2025-24893) in XWiki Platform, as confirmed by…

Read More »
BigTech Companies

Google: Microsoft WSUS Attacks Strike Multiple Organizations

October 29, 2025
Close-up of a man in a suit ringing a service bell with his fist.

A critical remote code execution vulnerability (CVE-2025-59287) in Microsoft's WSUS is being actively exploited, affecting Windows Server versions from 2012…

Read More »
Business

Hackers Exploit Critical Oracle Flaw, CISA Confirms

October 23, 2025
CISA logo with a shield, eagle, and cityscape, set against a purple and black background with abstract shapes.

CISA has added the critical Oracle E-Business Suite vulnerability CVE-2025-61884 to its Known Exploited Vulnerabilities catalog, confirming active exploitation and…

Read More »
BigTech Companies

Barracuda Exposes Stealthy Microsoft 365 Phishing Kit

October 17, 2025
A fishing hook dangles a login form over a blurred keyboard, symbolizing cyber threats.

Whisper 2FA is a sophisticated phishing-as-a-service platform that has compromised nearly one million Microsoft 365 accounts by stealing login credentials…

Read More »
Business

Nation-State Hackers Breach F5, Endangering Thousands of Customers

October 16, 2025
Modern F5 Networks corporate headquarters building with glass facade and red accent panels.

A nation-state hacking group infiltrated F5's networks, compromising thousands of organizations, including US government agencies and Fortune 500 companies, posing…

Read More »
Business

ClickFix Phishing Kit Exposed by Cybersecurity Experts

October 15, 2025
Computer mouse on a keyboard with a city skyline in the background, text reads CLICKFIX social engineering tactic.

Palo Alto Networks has identified the IUAM ClickFix Generator, a phishing toolkit that enables even novice cybercriminals to create convincing…

Read More »
Cybersecurity

LockBit’s Newest Ransomware Is Its Most Dangerous Threat Yet

September 27, 2025
Hands typing on a laptop with a red skull and crossbones cyber threat icon overlay.

LockBit 5.0 is a new, more dangerous ransomware variant targeting Windows, Linux, and VMware ESXi platforms, posing a cross-platform threat…

Read More »
Business

SonicWall SMA100 Update Eradicates Rootkit Malware

September 24, 2025
SonicWall logo in the center of concentric red circles on a black background.

SonicWall has released a critical firmware update for its SMA 100 series appliances that can eradicate the OVERSTEP rootkit malware,…

Read More »
Business

Akira Ransomware Actively Exploits Critical SonicWall VPN Flaw

September 12, 2025
SonicWall logo on an abstract red background with vertical lines.

The Akira ransomware group is exploiting CVE-2024-40766, a known vulnerability in SonicWall VPN appliances, to breach unpatched corporate networks. Despite…

Read More »
BigTech Companies

Global Warlock Ransomware Spreads via SharePoint Exploit

August 21, 2025
Close-up of hands on laptop with a ransomware warning, red alert triangles surround the screen.

A global ransomware campaign called Warlock is exploiting a critical Microsoft SharePoint vulnerability to compromise networks, escalate privileges, and deploy…

Read More »
Cybersecurity

Hackers Target SAP NetWeaver Flaw to Spread Linux Auto-Color Malware

July 31, 2025
A stylish penguin in sunglasses and a bow tie, depicted in a vibrant pop art style against a multicolored background.

Cybersecurity experts discovered a sophisticated attack using a critical SAP NetWeaver vulnerability (CVE-2025-31324) to deploy Auto-Color malware on Linux systems,…

Read More »
BigTech Companies

Chinese Hackers Exploit SharePoint Zero-Day, Warn Google & Microsoft

July 22, 2025
A hooded figure sits before a laptop displaying green code, with a blurred Chinese flag in the background, suggesting cyber activity.

Google and Microsoft experts discovered a critical SharePoint vulnerability (CVE-2025-53770) exploited by Chinese state-sponsored hackers to steal encryption keys and…

Read More »
Cybersecurity

SonicWall SMA Devices Still Infected with Stealthy OVERSTEP Malware

July 18, 2025
SonicWall logo displayed on an abstract background of glowing red and blue blocks and lines.

Cybersecurity experts discovered a malware campaign targeting outdated SonicWall SMA 100 devices, deploying the stealthy OVERSTEP backdoor via stolen admin…

Read More »
Cybersecurity

Black Claw Ransomware: Decrypt .bclaw & .apocalypse Files

June 27, 2025
Dark clawed hand interacts with glowing neon numbers and shapes in a vibrant digital landscape.

Black Claw ransomware encrypts files with .bclaw and .apocalypse extensions, demanding cryptocurrency payments for decryption, posing a serious cybersecurity threat.…

Read More »