Meta has confirmed a zero-click spyware attack on WhatsApp that targeted around 90 journalists and civil society members across more than two dozen countries. The breach, detected in December 2024, involved spyware from Israeli firm Paragon Solutions, delivered via a malicious PDF file in WhatsApp
In the ever-evolving landscape of cybersecurity, the integration of generative AI has become a pivotal point of discussion. To delve deeper into this groundbreaking technology and its impact on cybersecurity, we turn to renowned cybersecurity expert Jeremiah Fowler. In this exclusive Q&A
Chinese artificial intelligence startup DeepSeek has reported a "large-scale malicious attack" on its services, forcing the company to temporarily halt new user registrations. The attack coincided with the rapid rise of DeepSeek’s AI assistant app, which recently surpassed ChatGPT as the most
Ransomware gangs have recently begun posing as tech support to infiltrate networks and carry out malicious activities. These groups have been exploiting Microsoft services and tools, such as Microsoft Teams, for initial access and subsequent attacks. Security experts warn that this evolving
Threat actors are using deceptive tactics to bypass Apple iMessage’s phishing protection, tricking users into enabling disabled links in fraudulent messages. These smishing attacks target mobile users with fake texts posing as trusted entities, in an effort to manipulate recipients into
An emerging Android malware, FireScam, is posing as a premium version of Telegram and spreading via phishing websites imitating RuStore, Russia's alternative app marketplace. Researchers at Cyfirma revealed the malware uses advanced techniques to steal user data. FireScam is distributed through
A newly identified vulnerability, labeled “DoubleClickjacking” by security researcher Paulos Yibelo, exploits a timing-based double-click process to bypass clickjacking protections on prominent websites. DoubleClickjacking builds on traditional clickjacking, where users are tricked into clicking
Cybersecurity researchers have revealed that large language models (LLMs) can generate thousands of new variants of existing malware, which in turn helps the malware avoid detection. By obfuscating malicious JavaScript code, this AI-driven technique challenges traditional malware detection
Cybercriminals are exploiting Google Calendar and other Google services like Gmail, Forms, and Drawings in a large-scale phishing campaign, researchers from Check Point have reported. The campaign manipulates the trusted Google tools to bypass email security measures, allowing attackers to steal
Hackers are targeting Web3 professionals with malware disguised as video conferencing apps, in an effort to steal cryptocurrency and sensitive data. The campaign, active since September 2024, primarily affects users on Windows and macOS. The attack revolves around a fraudulent meeting platform