Cyber Alerts
- DragonForce ransomware abuses MSP’s SimpleHelp RMM to encrypt customers May 27, 2025The DragonForce ransomware operation successfully breached a managed service provider and used its SimpleHelp remote monitoring and management
- Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto May 25, 2025As many as 60 malicious npm packages have been discovered in the package registry with malicious functionality to harvest hostnames
- 詐騙電郵|Google警告收呢封Gmail要小心 點開隨時被竊個人資料 專家教做2步免中招 May 24, 2025【垃圾電郵/Gmail詐騙電郵】許多人都會使用Gmail,
- Russian Threat Actor TAG-110 Goes Phishing in Tajikistan May 22, 2025While Ukraine remains Russia's major target for cyberattacks, TAG-110 is part of a strategy to
- Marks & Spencer Projects $400M Loss After Cyberattack May 21, 2025The company expects it will continue to struggle with online disruptions until at least July, due to the attack
- Lumma Stealer Takedown Reveals Sprawling Operation May 21, 2025The FBI and partners have disrupted "the world's most popular malware," a sleek enterprise with thousands
- Fake Kling AI Malvertisements Lure Victims With False Promises May 20, 2025Researchers noted that they found several similar websites, two of which are still operating and require the same kind
- RVTools Official Site Hacked to Deliver Bumblebee Malware via Trojanized Installer May 18, 2025The official site for RVTools has been hacked to serve a compromised installer for the popular VMware environment reporting utility
- New 'Defendnot' tool tricks Windows into disabling Microsoft Defender May 16, 2025A new tool called 'Defendnot' can disable Microsoft Defender on Windows devices by registering a fake antivirus
- FBI warns of ongoing scam that uses deepfake audio to impersonate government officials May 15, 2025Warning comes as the use of deepfakes in the wild are rising.
- Hackers behind UK retail attacks now targeting US companies May 14, 2025Google warned today that hackers using Scattered Spider tactics against retail chains in the United Kingdom have also started targeting
- SAP patches second zero-day flaw exploited in recent attacks May 13, 2025SAP has released patches to address a second vulnerability exploited in recent attacks targeting SAP NetWeaver servers as a zero
- M&S says customer data stolen in cyberattack, forces password resets May 13, 2025Marks and Spencer (M&S) confirms that customer data was stolen in a cyberattack last month,
- Ivanti fixes EPMM zero-days chained in code execution attacks May 13, 2025Ivanti warned customers today to patch their Ivanti Endpoint Manager Mobile (EPMM) software against two security vulnerabilities chained
- Attackers Lace Fake Generative AI Tools With 'Noodlophile' Malware May 12, 2025Threat actors are scamming users by advertising legitimate-looking generative AI websites that, when visited, install credential
- ASUS DriverHub flaw let malicious sites run commands with admin rights May 12, 2025The ASUS DriverHub driver management utility was vulnerable to a critical remote code execution flaw that allowed malicious sites to
- iClicker site hack targeted students with malware via fake CAPTCHA May 10, 2025The website of iClicker, a popular student engagement platform, was compromised in a ClickFix attack that used a
- Bluetooth 6.1 enhances privacy with randomized RPA timing May 10, 2025The Bluetooth Special Interest Group (SIG) has announced Bluetooth Core Specification 6.1, bringing important improvements
- Google Chrome to use on-device AI to detect tech support scams May 9, 2025Google is implementing a new Chrome security feature that uses the built-in 'Gemini Nano' large
- Fake AI video generators drop new Noodlophile infostealer malware May 9, 2025Fake AI-powered video generation tools are being used to distribute a new information-stealing malware family called