A new threat campaign named PoisonSeed is exploiting compromised login credentials from customer relationship management (CRM) platforms and mass email services to distribute spam messages featuring cryptocurrency seed phrases. This scheme aims to siphon funds from the digital wallets of unsuspecting victims. According to an analysis by Silent Push, the…
Google Issues Global Warning on Gmail Data Breach In a recent advisory, Google has alerted users worldwide to a significant data breach affecting its Gmail service. This warning underscores a troubling reality for users and businesses alike regarding the security of their sensitive information. The breach, which has raised serious…
On May 1, 2025, Google released its latest monthly security updates for Android, addressing 46 security vulnerabilities, including a high-severity flaw that has been confirmed as exploited in the wild. This specific vulnerability, registered as CVE-2025-27363, boasts a CVSS score of 8.1, indicating significant potential risks due to its ability…
A recent analysis has unveiled a new custom backdoor, dubbed MQsTTang, employed by the China-aligned hacking group Mustang Panda in a social engineering campaign that began in January 2023. This malware marks a departure from the group’s previously observed tactics, as it appears not to have roots in existing malware…
AI in Retail Crime: A Double-Edged Sword As cybercriminals increasingly leverage artificial intelligence (AI) to enhance organized retail crime (ORC) and evade detection, defenders are urged to harness similar technologies for protective measures. In a recent interview with Information Security Media Group, Jackie Deloplaine from RH-ISAC and Derek Dykens of…
Cybersecurity Update: Rising Threats and Emerging Vulnerabilities In the ever-evolving landscape of cybersecurity, unpatched systems, weak passwords, and neglected plugins serve as gateways for attackers. As supply chains intertwine deeply with the software we depend on, malware is increasingly hidden within seemingly benign avenues, including job offers and cloud services.…
Google Alerts Users to Global Gmail Data Breach Risks In a recent alert, Google has issued a worldwide warning regarding a significant data breach affecting Gmail users. The tech giant is drawing attention to potential vulnerabilities that could have exposed sensitive information, a pressing concern for professionals and business owners…
Recent activity has revealed that cybercriminals are actively exploiting security vulnerabilities in GeoVision’s end-of-life Internet of Things (IoT) devices. This alarming trend is being leveraged to recruit these devices into a Mirai botnet for conducting distributed denial-of-service (DDoS) attacks. Initial observations made by the Akamai Security Intelligence and Response Team…
Southeast Asian Governments Targeted in Ongoing Cyber Espionage by Sharp Panda A sophisticated cyber espionage campaign has emerged, focusing on high-profile government entities across Southeast Asia, with the Chinese threat actor known as Sharp Panda at the forefront. This activity has reportedly intensified since late last year, evolving away from…
