Google has released an emergency security update for Chrome addressing multiple critical vulnerabilities, including CVE-2025-0411 and CVE-2025-0410, which could allow remote attackers to execute arbitrary code on affected systems. These high-severity bugs affect Chrome’s V8 JavaScript engine and ANG
A new investigation reveals that one telecommunications provider has been hosting the majority of active command-and-control (C2) servers operating across the Middle East. This concentration of malicious infrastructure under a single provider raises significant questions about infrastructure abuse,
A sophisticated cross-platform credential stealer has been discovered in the NPM ecosystem, employing advanced sandbox evasion techniques to harvest sensitive data from developer workstations. The malware specifically targets Windows, Linux, and macOS systems, using environment fingerprinting to det
Cybercriminals are distributing ValleyRAT malware through counterfeit Microsoft Teams download websites. The malicious campaign targets unsuspecting users searching for legitimate Microsoft Teams installations, delivering a sophisticated remote access trojan (RAT) capable of data exfiltration, syste
CISA has added seven actively exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including critical flaws in Microsoft Windows, Webmin, Fortinet FortiOS, and others. Federal agencies have until specified deadlines to patch these vulnerabilities, and private sector organi
Banana RAT malware spreads through fake invoices targeting 16 Brazilian banks. QR code fraud drains accounts while victims think they’re paying bills.
Gremlin Stealer malware has evolved with sophisticated obfuscation techniques, embedding malicious payloads in resource files to bypass security tools. The new variant targets credentials, cryptocurrency wallets, and browser data while evading traditional detection methods through multi-stage execution and living-off-the-land tactics. A sophisticated evolution of the Gremlin information stealer has emerged, employing advanced obfuscation tactics that…
Discord just rolled out end-to-end encryption for ALL voice and video calls by default. Your conversations just got a whole lot more private.
Americans lost $388M to crypto ATM scams in 2025. Criminals are weaponizing Bitcoin kiosks to drain victims’ accounts. Know the red flags before you use one.
Interpol arrests 201 cybercriminals across 13 countries in Middle East and North Africa. Operation Ramz disrupted major phishing networks and financial scams.