Author: PulauWin

Help Net Security

New infosec products of the week: November 21, 2025

November 21, 2025 add comment
Here’s a look at the most interesting products from the past week, featuring releases from Bedrock Data, Immersive, Kentik, Minimus, and Synack. Kentik AI Advisor brings intelligence and automation... Read more »
Internet Security

Researchers devised a new enumeration technique that exposed 3.5B WhatsApp profiles

November 20, 2025 add comment
Researchers disclosed a WhatsApp flaw that exposed 3.5B accounts. Meta has patched it to prevent this mass enumeration. A team of researchers at the University of Vienna found a... Read more »
Internet Security

Sturnus: New Android banking trojan targets WhatsApp, Telegram, and Signal

November 20, 2025 add comment
The Android trojan Sturnus targets communications from secure messaging apps like WhatsApp, Telegram and Signal. Sturnus is a new Android banking trojan with full device-takeover abilities. It bypasses encrypted... Read more »
Help Net Security

Salesforce investigates new incident echoing Salesloft Drift compromise

November 20, 2025 add comment
In what may be a repeat of the Salesloft Drift supply chain compromise, Salesforce confirmed that they’ve identified unusual activity involving Gainsight-published apps connected to Salesforce. “Our investigation indicates... Read more »
Internet Security

Coordinated sanctions hit Russian bulletproof hosting providers enabling top ransomware Ops

November 20, 2025 add comment
US, Australia and UK sanctioned 2 Russian bulletproof hosting providers accused of aiding groups like LockBit, BlackSuit and Play. US, Australia and UK sanctioned two Russian bulletproof hosting providers... Read more »
IT Security

Russian money launderers bought a bank to disguise ransomware profit

November 20, 2025 add comment
A billion-dollar money laundering network active in the UK funnelled money, including the profits of ransomware attacks, into its own bank to circumvent sanctions on Russia and help fund... Read more »
IT Security

UK targets ‘bulletproof’ services that hosted ransomware gangs

November 20, 2025 add comment
The UK’s NCA and partners have cracked down on ‘bulletproof’ services that hosted cyber criminal infrastructure. Read more »
Help Net Security

Security gap in Perplexity’s Comet browser exposed users to system-level attacks

November 20, 2025 add comment
There is a serious security problem inside Comet, the AI-powered agentic browser made by Perplexity, SquareX researchers say: Comet’s MCP API allows the browser’s built-in (but hidden from the... Read more »
Help Net Security

Oligo delivers runtime-native security for models and agents

November 20, 2025 add comment
Oligo Security announced new capabilities to protect the broadest spectrum of AI deployments, including AI applications, LLMs, and agentic AI. The new platform modules address the largest blind spot... Read more »
Help Net Security

MacOS DigitStealer malware poses as DynamicLake, targets Apple Silicon M2/M3 devices

November 20, 2025 add comment
A new infostealer is targeting macOS users by masquerading as the legitimate DynamicLake UI enhancement and productivity utility and possibly Google’s Drive for desktop app. Multi-stage delivery Dubbed DigitStealer... Read more »
Subscribe to our Newsletter