New Coyote Malware Variant Exploits Windows UI Automation to Steal Banking Credentials

Jul 23, 2025Ravie LakshmananWindows Security / Cryptocurrency The Windows banking trojan known as Coyote has become the first known malware strain to exploit the Windows accessibility framework called UI Automation (UIA) to harvest sensitive information. “The new Coyote variant is targeting Brazilian users, and uses UIA to extract credentials linked to 75 banking institutes’ web […]

Continue Reading

Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages

Jul 23, 2025Ravie LakshmananSoftware Integrity / DevSecOps Google has announced the launch of a new initiative called OSS Rebuild to bolster the security of the open-source package ecosystems and prevent software supply chain attacks. “As supply chain attacks continue to target widely-used dependencies, OSS Rebuild gives security teams powerful data to avoid compromise without burden […]

Continue Reading

Meta updates safety features for teens. More than 600,000 accounts linked to predatory behavior

Facebook and Instagram icons are seen displayed on an iPhone. Jakub Porzycki | Nurphoto | Getty Images Meta on Wednesday introduced new safety features for teen users, including enhanced direct messaging protections to prevent “exploitative content.” Teens will now see more information about who they’re chatting with, like when the Instagram account was created and […]

Continue Reading

Kerberoasting Detections: A New Approach to a Decade-Old Challenge

Security experts have been talking about Kerberoasting for over a decade, yet this attack continues to evade typical defense methods. Why? It’s because existing detections rely on brittle heuristics and static rules, which don’t hold up for detecting potential attack patterns in highly variable Kerberos traffic. They frequently generate false positives or miss “low-and-slow” attacks […]

Continue Reading

Alibaba’s Qwen Team Releases New Coding AI Model With Agentic Capabilities

Alibaba’s Qwen team released a new artificial intelligence (AI) coding model on Tuesday. Dubbed Qwen 3 Coder, the model comes with several agentic capabilities including agentic coding, agentic browser-use, and agentic tool-use. The researchers have released only one variant of the model so far, the Qwen3-Coder-480B-A35B-Instruct, which is the most powerful variant in the family. […]

Continue Reading

EA Will Reveal Battlefield 6 This Week

The next Battlefield will be revealed this week, Electronics Arts has announced. The company has also confirmed the official title of the game following leaks that revealed the same and claimed an official announcement was on the way. Battlefield 6 — yes, that’s the official title — will get a reveal trailer on July 24. […]

Continue Reading

Here’s Everything That Was Announced at Pokémon Presents

The Pokémon Presents showcase was broadcast Tuesday, bringing updates on Pokémon Legends: Z-A, Pokémon Concierge Netflix show, and a new look at Pokémon Champions. The Pokémon Company also announced a new puzzle title, that’s now out on mobile platforms and Nintendo Switch. The 24-minute-long presentation shared details on the 2025 Pokémon World Championships and revealed […]

Continue Reading

CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks

Jul 23, 2025Ravie LakshmananVulnerability / Threat Intelligence The U.S. Cybersecurity and Infrastructure Security Agency (CISA), on July 22, 2025, added two Microsoft SharePoint flaws, CVE-2025-49704 and CVE-2025-49706, to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. To that end, Federal Civilian Executive Branch (FCEB) agencies are required to remediate identified vulnerabilities […]

Continue Reading