Explicit warning: The MI5 issued a public warning to Members of Parliament that they are active targets for foreign espionage. Espionage tactics: Methods such as…
Flaw exploited: Harvard University confirmed it was impacted by a campaign exploiting a zero-day vulnerability in Oracle's E-Business Suite (EBS) system. Limited impact: The university…
Major migration: A German state replaced Microsoft Exchange and Outlook with open-source alternatives for its 30,000 government employees. Digital sovereignty: The move is a deliberate…
Dennis Monner — Open SystemsOpen Systems has welcomed Dennis Monner as its new Chief Executive Officer. The former Aryaka Chief Commercial Officer will drive sales…
Key arrest: Spain's Guardia Civil has arrested a 25-year-old Brazilian national considered the primary developer of phishing kits for the Spanish-speaking world. Crime-as-a-Service model: The…
Data published: Cybercriminals have published customer data on the dark web, stolen from Qantas during a third-party platform breach in July 2025. Breach scale: The…
Sudden Surge: UK Google searches for VPNs rose sharply between midnight and early morning hours. Free VPN Focus: “VPN free” led searches, showing users’ preference…
Global Growth: VPN market booming worldwide, projected to hit $90 billion by 2027. Local Regulation: Pakistan’s VPN licensing limits freelancers, raising privacy and enforcement concerns.…
This week’s major stories arrive in the middle of Cybersecurity Awareness Month, a reminder that awareness alone isn’t enough. Industry leaders are urging a shift…
Novel distribution vector: A new Stealit malware campaign is actively leveraging Node.js's experimental SEA feature to package and distribute its payloads. Evading detection: The malware…
Fixed sample poisoning: Research shows a surprisingly small number of malicious documents can poison large language models. Backdoor flaws created: This technique can introduce flaws,…
Domain seizure: The clearnet domain of BreachForums has been seized by the FBI in conjunction with international law enforcement partners. Data compromised: Administrators ShinyHunters confirmed…
Extensive impact: A hacking campaign targeting Oracle's E-Business Suite has possibly affected one hundred organizations. CL0P implicated: Google's cybersecurity team attributes the operation to the…
Malicious App: Mobdro Pro IP TV + VPN installs Klopatra banking Trojan, taking full device control. Infection Method: App uses social engineering and sideloading to…
Modern UI: React-based Admin Web UI improves speed, usability, and access to advanced configurations. Expanded APIs: REST API replaces XML-RPC, simplifying integrations and enabling faster,…
Extortion demand: Malicious actors are attempting to extort Discord following a significant data breach involving a third-party customer support platform used by Discord. Massive data…
Deceptive Pop-Up: Fake Fortinet VPN “Compliance Checker” tricks users into running hidden PowerShell commands. Cache Smuggling: Malware disguised as image cached locally, bypassing antivirus and…
Unsecured database: An unsecured database, reportedly belonging to the billing platform Invoicely, was found to be exposed. PII leaked: The database contained nearly 180,000 files,…
ClayRat Spyware Campaign Targets Android Users via Telegram and Fake WhatsApp, TikTok, YouTube Sites
Primary target: A rapidly evolving Android spyware campaign, named ClayRat, is primarily targeting users in Russia. Distribution method: The spyware is distributed through Telegram channels…
Incident Rate: A third of organizations reported experiencing at least one API security incident within the past 12 months. Persistent visibility gaps: A substantial 80%…
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
