Internet Security

ESET warns of PromptLock, the first AI-driven ransomware

August 27, 2025 add comment
ESET found PromptLock, the first AI-driven ransomware, using OpenAI’s gpt-oss:20b via Ollama to generate and run malicious Lua scripts. In a series of messages published on X, ESET Research... Read more »

China linked Silk Typhoon targeted diplomats by hijacking web traffic

August 27, 2025 add comment
The China-linked APT group Silk Typhoon targeted diplomats by hijacking web traffic to redirect it to a website that delivered malware. China-linked cyberespionage group Silk Typhoon targeted diplomats by... Read more »

Farmers Insurance discloses a data breach impacting 1.1M customers

August 26, 2025 add comment
Farmers Insurance suffered a breach tied to Salesforce attacks, exposing data of 1.1M customers across its nationwide insurance network. Farmers Insurance disclosed a data breach affecting 1,071,172 customers, linked... Read more »

Citrix fixed three NetScaler flaws, one of them actively exploited in the wild

August 26, 2025 add comment
Citrix addressed three vulnerabilities in NetScaler ADC and NetScaler Gateway, including one that has been actively exploited in the wild. Citrix addressed three security flaws (CVE-2025-7775, CVE-2025-7776, CVE-2025-8424) in NetScaler... Read more »

Auchan discloses data breach: data of hundreds of thousands of customers exposed

August 26, 2025 add comment
French retailer Auchan suffered a data breach impacting hundreds of thousands of customers, with personal information stolen. French retailer Auchan suffered a data breach that impacted hundreds of thousands... Read more »

U.S. CISA adds Citrix Session Recording, and Git flaws to its Known Exploited Vulnerabilities catalog

August 26, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Citrix Session Recording, and Git flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Citrix Session... Read more »

Docker fixes critical Desktop flaw allowing container escapes

August 25, 2025 add comment
Docker fixed a critical flaw in the Docker Desktop app for Windows and macOS that could potentially allow an attacker to escape the confines of a container. Docker fixed... Read more »

Malicious apps with +19M installs removed from Google Play because spreading Anatsa banking trojan and other malware

August 25, 2025 add comment
Experts found 77 malicious Android apps with 19M+ installs on Google Play, spreading malware, including the Anatsa (TeaBot) banking trojan. While investigating Anatsa (Tea Bot) banking trojan infections, Zscaler’s... Read more »

Pakistan-linked APT36 abuses Linux .desktop files to drop custom malware in new campaign

August 25, 2025 add comment
APT36 uses Linux .desktop files in new attacks on Indian gov & defense, aiming for data theft and persistent espionage access. Transparent Tribe (aka APT36, Operation C-Major, and Mythic... Read more »

Android.Backdoor.916.origin malware targets Russian business executives

August 25, 2025 add comment
New Android spyware Android.Backdoor.916.origin is disguised as an antivirus linked to Russia’s intelligence agency FSB, and targets business executives. Doctor Web researchers observed a multifunctional backdoor Android.Backdoor.916.origin targeting Android... Read more »
Subscribe to our Newsletter