New Sturnus Android Banking Trojan Can Spy on WhatsApp, Telegram, and Signal
A new Android banking malware family named Sturnus is emerging as one of the most capable threats targeting mobile users, combining credential theft, message...
Chinese Hackers Use “BadAudio” Malware to Break Into Thousands of Websites
BADAUDIO has emerged as one of the most active and dangerous malware tools tied to Chinese cyber espionage, powering a long running operation that...
Hackers Paid a CrowdStrike Employee for Internal Access
The revelation that a CrowdStrike employee accepted payment from hackers in exchange for internal access has quickly become one of the most alarming cybersecurity...
New WhatsApp Worm Can Take Over Your Account and Send Malware to All Your Contacts
A new WhatsApp worm is turning one of the world’s most popular messaging apps into an automated malware delivery system. The campaign hijacks active WhatsApp...
Iranian Hackers Target Defense and Government Officials in Expansive SpearSpecter Espionage Campaign
The SpearSpecter espionage campaign is one of the most advanced and sustained nation state cyber operations currently active, targeting senior defense officials, government personnel,...
Sneaky2FA Phishing Kit Evolves With Browser in the Browser Attacks and Advanced MFA Bypass Techniques
The Sneaky2FA phishing kit has emerged as one of the most capable and frequently deployed phishing as a service platforms targeting Microsoft 365 accounts...
PlushDaemon Supply Chain Attacks Exploit DNS Hijacking to Deliver Custom Espionage Malware
The PlushDaemon threat actor continues to expand its capabilities through advanced adversary in the middle techniques that manipulate software update channels to deliver custom...
WhatsApp Leak Exposes 3.5 Billion Phone Numbers Worldwide
The WhatsApp leak is one of the most significant privacy and security exposures ever documented on a global scale. New research from the University...
Google Patches New Chrome Zero Day Vulnerability Actively Exploited in Attacks
Google has released an emergency security update to address a newly discovered Chrome zero day vulnerability, identified as CVE-2025-13223. The flaw was already being...
Samsung AppCloud Raises Global Privacy Concerns Over Unremovable System Software
The Samsung AppCloud issue has become a major point of controversy after digital-rights researchers and global consumers reported that Samsung is shipping various Galaxy...
North Korean IT Workers Ran Secret Operations Inside U.S. Companies for Years
The United States Justice Department has revealed a sweeping set of criminal cases and civil forfeiture actions that expose how north korean it workers...
Android Rust Is Quietly Solving One of Tech’s Biggest Security Problems
Google has reached a turning point in the evolution of Android security. After years of escalating complexity, growing attack surfaces, and a steady stream...