Cybersecurity researchers have uncovered a sophisticated new Android malware strain called Keenadu that is deeply embedded in the firmware of various Android tablets and can give attackers extensive control over infected devices. Unlike typical threats that arrive through malicious apps, Keenadu is implanted into the operating system during the firmware build process, meaning it can […]
Security researchers have uncovered a widespread campaign involving malicious browser extensions on the Google Chrome platform that are designed to steal sensitive information from users and organizations. These extensions, many of which were disguised as legitimate productivity tools or AI assistants, are capable of siphoning off email content, business analytics, two-factor authentication details, and users’ […]
Cybersecurity experts have uncovered a sophisticated phishing campaign that uses LinkedIn’s private messaging feature to deliver harmful software to unsuspecting targets. Instead of relying on traditional email phishing, attackers first reach out to users through LinkedIn messages, building a sense of trust before introducing malicious files. The campaign specifically targets high-value individuals and professionals by […]
Recent high-profile outages involving major cloud service providers have shown just how interconnected and fragile modern internet infrastructure can be. When platforms such as Amazon Web Services, Microsoft Azure, or Cloudflare experience problems, the effects are felt far beyond the cloud provider itself. Websites, applications, and online workflows that depend on these services can suddenly […]
Microsoft has unveiled a new three-stage plan to phase out the legacy NT LAN Manager (NTLM) authentication protocol as part of its efforts to improve security in Windows environments. The move is aimed at reducing reliance on the decades-old technology and transitioning systems toward more secure, modern alternatives like Kerberos. Although NTLM has been deprecated […]
Notepad++, a popular open-source text editor used by millions of developers and IT professionals, recently revealed that its official update mechanism had been compromised by a highly skilled attacker linked to a nation-state. The incident did not involve malicious code being added directly to the Notepad++ software itself, but instead exploited weaknesses in the infrastructure […]
Cybersecurity investigators have discovered that a major security breach at the popular password manager LastPass in 2022 has continued to cause problems for users years later. When hackers broke into LastPass’s systems, they stole copies of encrypted password vaults — the secure folders where users keep passwords and other important information. Although these vaults were […]
Cybersecurity researchers have discovered that a well-known hacker group called Silver Fox is now targeting people in India with fake emails that appear to come from the income tax department. These emails are designed to trick users into downloading harmful software disguised as a legitimate file. Once a victim interacts with the fake file, the […]
The U.S. Federal Bureau of Investigation (FBI) has issued a warning about a sneaky new tactic used by North Korean hackers to target organizations and individuals. Instead of relying on traditional phishing emails with bad links, these attackers are embedding harmful web addresses inside QR codes. People are being encouraged to scan these QR codes, […]
Cybersecurity experts have discovered five harmful Google Chrome extensions that were pretending to be useful tools but were actually designed to steal access to work accounts. These extensions were made to look like tools for popular business systems used by companies for human resources and finance tasks. Because they appeared legitimate, users could easily install […]