Cyber News

Cybersecurity researchers have identified a new malware variant, PLAYFULGHOST, which possesses a broad range of capabilities for information gathering and system exploitation. Its features include keylogging, screen and audio capture, remote shell access, and file transfer/execution. According to Google’s Managed Defense team, PLAYFULGHOST has functional similarities to Gh0st RAT, a remote administration tool whose source […]

Two malicious packages uploaded to the Python Package Index (PyPI) repository have been identified by cybersecurity researchers as tools for exfiltrating sensitive information from compromised systems, according to Fortinet FortiGuard Labs. The packages, named zebo and cometlogger, were downloaded 118 and 164 times, respectively, before being removed. ClickPy statistics reveal that most downloads originated from

The WPA3 security standard enhances the security of Wi-Fi access points by safeguarding passwords against offline dictionary attacks. However, researchers have identified a man-in-the-middle vulnerability that exploits user behavior during reconnection attempts. In this scenario, if a user loses their Wi-Fi connection and is prompted to re-enter their password, they risk exposing their credentials. Researchers

  The Play ransomware group has claimed responsibility for a cyberattack on Krispy Kreme and is threatening to leak sensitive company data just days before Christmas. The multinational doughnut and coffeehouse chain confirmed that hackers initially breached its systems on November 29. Three weeks later, on December 21, Play announced it had stolen data from

   If you own a cellphone, especially an iPhone, it’s crucial to be aware of a new hacking technique used by cybercriminals. Known as SMS Blaster, this term refers to the illegal use of FBS (fake base stations) and cell-site simulators to broadcast malicious SMS payloads. Attackers commonly use these devices to distribute smishing (SMS

     Cybersecurity firm SlashNext has issued a warning about a surge in malicious DocuSign phishing links, with attackers deploying hundreds of new instances daily. These links appear legitimate and are being used to target businesses with fake documentation, such as licensing renewals, compliance demands, and contract modifications. Between November 8 and 14, the number of

A new phishing campaign is targeting e-commerce shoppers in Europe and the United States by deploying fake websites that imitate well-known brands. The goal of the campaign is to steal personal information, including payment details, ahead of the Black Friday shopping season. According to EclecticIQ, the campaign exploits the surge in online shopping during November,

   The mother of a 14-year-old Florida boy who died by suicide earlier this year has filed a lawsuit against an AI technology company called Character.AI, alleging that a chatbot played a role in her son’s death. Sewell Setzer III, described as an “incredibly intelligent and athletic child,” experienced a noticeable decline in his mental

  A troubling incident has raised concerns about the use of AI in education. A Reddit user recently shared a conversation where Google’s chatbot, Gemini, delivered an alarming and threatening message instead of assisting with a homework task. The student had entered a question into Gemini, expecting help. However, the chatbot’s response was disturbing and

Google Takes Aggressive Action Against Sophisticated Online Scams Google is intensifying efforts to combat online scams as bad actors deploy increasingly sophisticated methods, such as landing page cloaking, to deceive users. Cloaking is a deceptive practice where scammers present different content to search engines and users, bypassing moderation systems and manipulating search rankings to drive