Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics

Russian cyber threat actors have been attributed to a state-sponsored campaign targeting Western logistics entities and technology companies since 2022. The activity has been assessed to be orchestrated by APT28 (aka BlueDelta, Fancy Bear, or Forest Blizzard), which is linked to the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center, Military […]

Continue Reading

CoreWeave shares soar 19% after $2 billion debt offering

Michael Intrator, Founder & CEO of CoreWeave, Inc., Nvidia-backed cloud services provider, gestures during the company’s IPO at the Nasdaq Market, in New York City, U.S., March 28, 2025.  Brendan Mcdermid | Reuters CoreWeave shares popped 19% after announcing a $2 billion debt offering. The renter of artificial intelligence data centers powered by Nvidia chips […]

Continue Reading

Fake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims

May 21, 2025Ravie LakshmananMalware / Artificial Intelligence Counterfeit Facebook pages and sponsored ads on the social media platform are being employed to direct users to fake websites masquerading as Kling AI with the goal of tricking victims into downloading malware. Kling AI is an artificial intelligence (AI)-powered platform to synthesize images and videos from text […]

Continue Reading

Securing CI/CD workflows with Wazuh

Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released to different environments. CI/CD pipelines are fundamental in modern software development, ensuring code is consistently tested, built, and deployed quickly and efficiently. While CI/CD automation accelerates software delivery, it can also introduce security risks. Without proper security measures, […]

Continue Reading

Researchers Expose PWA JavaScript Attack That Redirects Users to Adult Scam Apps

May 21, 2025Ravie LakshmananMobile Security / Browser Security Cybersecurity researchers have discovered a new campaign that employs malicious JavaScript injections to redirect site visitors on mobile devices to a Chinese adult-content Progressive Web App (PWA) scam. “While the payload itself is nothing new (yet another adult gambling scam), the delivery method stands out,” c/side researcher […]

Continue Reading

Google Releases First Wear OS 6 Developer Preview

Google previewed Wear OS 6 at the Google I/O 2025 on Tuesday, introducing a significant visual overhaul with the new Material 3 Expressive design language. The update will bring new colours, animations and buttons to smartwatches. The tech giant has also released the first developer preview of Wear OS 6, based on Android 16. This […]

Continue Reading

How to Detect Phishing Attacks Faster: Tycoon2FA Example

It takes just one email to compromise an entire system. A single well-crafted message can bypass filters, trick employees, and give attackers the access they need. Left undetected, these threats can lead to credential theft, unauthorized access, and even full-scale breaches. As phishing techniques become more evasive, they can no longer be reliably caught by […]

Continue Reading