RAM-Only Rollout: IPVanish launches RAM-only servers in 19 locations, with full transition planned by 2027. OpenVPN on iOS: OpenVPN withโฆ
News
Salesforce breach scope: Google clarified the compromise is not limited to the Salesforce integration and may impact other Drift-connected platformsโฆ
Fake online gambling: A scam network of hundreds of polished fake online casinos offers fraudulent affiliations to interested parties. Stealingโฆ
Toyota data breach: Threat actors allege the systems of Toyota India have been compromised, exposing employee and company data. Theโฆ
OFAC sanctions: OFAC imposed new sanctions in connection with an IT worker fraud scheme generating illicit revenue for North Korea.โฆ
AI ransomware: The first known instance of AI-powered ransomware, a malware variant, was named PromptLock. Malware details: It utilizes anโฆ
World Cup scams: Malicious, FIFA-themed domain registrations leverage typosquatting and brand impersonation to deceive unsuspecting victims. Fake domains: These sitesโฆ
Google Launches Cyber Disruption Unit to Proactively Counter Threats Instead of โJust Defendingโ
Proactive defense: Google announced starting a cyber โdisruption unitโ aimed at a more proactive stance against threat actors. Aggressive strategies:โฆ
Chinese Hackers: A new advisory reveals widespread cyberespionage activity by a Chinese state-sponsored threat actor. Operation details: Known flaws areโฆ
Persistent operations: Blind Eagle continues its advanced spearphishing and RAT-based malware campaigns. Malware targets: TAG-144โs focus remains primarily on Southโฆ
Targeting manufacturing: A sophisticated social engineering campaign targets supply chain-critical manufacturing companies with MixShell malware. How it starts: Hackers startโฆ
Salesforce theft: An OAuth token theft operation compromised the Salesloft SalesDrift platform, allowing unauthorized access to Salesforce environments. Impacted users:โฆ
Fifth conviction: The last of the five accused individuals was convicted for participating in a Nigerian fraud scheme targeting U.S.โฆ
AI integration issues: Managing AI integration within embedded systems in organizations reveals vulnerabilities. The discrepancy: Inadequate governance frameworks were seenโฆ
PRC-nexus espionage: A UNC6384 cyber operation demonstrates escalated capabilities in state-sponsored cyber espionage. Who is targeted: The multi-stage attack chainโฆ
State offices breach: Nevada Governor Joe Lombardo announced the closure of state offices due to a cyber intrusion. Impacted services:โฆ
RAT delivery: Security researchers observed a global campaign delivering PureHVNC, DCRat, and Babylon RAT, among others. Enterprise campaign: Phishing emailsโฆ
Threat trends: API vulnerabilities and AI-related risks are rising, with over 600 API-related CVEs disclosed in Q2 2025. Strategic shift:โฆ
Moniz Silva breach: The notorious Qilin threat actor announced the alleged breach of healthcare company Moniz Silva, citing ethical reasons.โฆ
Targeting email defense: A new phishing campaign reportedly targets both users and AI-based defenses. Prompt injection against AI: The plain-textโฆ
Get expert insights on threats, breaches, scams, and security trends โ delivered every Saturday.
Most Popular
