A new strain of the Necro malware has infected over 11 million Android devices by exploiting vulnerabilities in apps from the Google Play Store and unofficial sources. Originally identified by Kaspersky, the Necro Trojan has evolved, spreading through malicious software development kits (SDKs)
Latest News
Microsoft has raised alarms over a new wave of cyberattacks targeting the US healthcare sector, led by the financially motivated group Vanilla Tempest. According to Microsoft's recent post on X (formerly Twitter) regarding the issue, the group has deployed the INC ransomware strain in these
LinkedIn has quietly opted in its users' data into training its generative AI models without prior notice. The platform has since introduced an opt-out option as a user account setting. As reported by 404Media and other sources, LinkedIn appears to have implemented data collection for AI
The US government has imposed new sanctions on Israeli spyware company Intellexa, stepping up its efforts to combat the misuse of commercial spyware technology. Intellexa, known for developing the invasive "Predator" spyware, has been linked to international surveillance operations targeting
Payment processor Slim CD, based in Florida, is currently under investigation for a significant data breach that exposed the credit card information of nearly 1.7 million customers. The breach, which took place between August 2023 and June 2024, compromised customer names, addresses, credit card
Intel has issued a security advisory detailing over 20 vulnerabilities affecting various processors, and has urged users to update their systems. The vulnerabilities primarily impact Intel’s UEFI firmware, used in processors such as Atom, Xeon, Pentium, Celeron, and Core. These flaws can result in
A newly discovered flaw in WhatsApp’s "View Once" feature allows recipients to bypass privacy protections to save and share media intended to disappear after a single viewing. The issue was formally identified by the Zengo X Research Team. WhatsApp launched the "View Once" feature in 2021 so
X, formerly known as Twitter, has permanently suspended the use of European Union (EU) user data in training its AI model, Grok. This comes following a legal challenge by the Irish Data Protection Commission (DPC), demanding that X halt its AI data collection practices. The suspension, which took
In a recent campaign, GitHub comments are being used to distribute Lumma Stealer, a password-stealing malware. The campaign was first reported by a contributor to the teloxide Rust library, who shared on Reddit that multiple GitHub comments, disguised as fixes, were actually pushing malware.
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password-protected database that contained thousands of records belonging to Confidant Health — an AI-powered platform offering mental health and addiction treatment. The database contained patient PII,