A critical vulnerability in Grandstream GXP1600 series VoIP phones enables remote, unauthenticated attackers to gain root privileges, allowing them to silently eavesdrop on communications. This flaw poses a significant risk…
Continue readingArkanix Stealer emerged as a short-lived information-stealing malware operation promoted on dark web forums in late 2025. The malware was likely developed as an AI-assisted experiment, indicating a growing trend…
Continue readingResearchers have identified PromptSpy, the first known Android malware that integrates generative AI into its runtime execution. This malware leverages Google’s Gemini model to dynamically adapt its persistence mechanisms across…
Continue readingA Ukrainian national has been sentenced to five years in prison for assisting North Korean IT workers in infiltrating U.S. companies by providing them with stolen identities. This case highlights…
Continue readingThe FBI reported that in 2025, Americans lost over $20 million due to a significant increase in ATM ‘jackpotting’ attacks, where criminals deploy malware to manipulate cash machines into dispensing…
Continue readingThe University of Mississippi Medical Center (UMMC) has shut down all its clinic locations across the state in response to a ransomware attack that occurred on Thursday. The attack disrupted…
Continue readingPayPal has disclosed a data breach resulting from a software error in a loan application, which exposed sensitive user information, including Social Security numbers, for nearly six months in the…
Continue readingThe article examines how the ‘shift left’ security approach, which integrates security earlier in the development lifecycle, has created unintended challenges. While intended to improve security, it has increased pressure…
Continue readingThe French Ministry of Finance has disclosed a significant cybersecurity incident affecting approximately 1.2 million accounts within the French bank registry. The breach, which was publicly announced by the ministry,…
Continue readingThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning that hackers are actively exploiting a critical remote code execution (RCE) vulnerability in BeyondTrust Remote Support software. Identified…
Continue reading