Who Is Scattered Spider? Scattered Spider is a cybercrime group known for executing high-impact ransomware attacks across the United States. They gained notoriety for their clever use of social engineering, SIM-swapping, and remote access tools to infiltrate major organizations. Operating with international ties, the group targeted companies with sophisticated techniques and insider manipulation to extort…
Australia’s eSafety Commissioner may classify GitHub as a social network and ban kids under 16 from using it. Officials argue GitHub’s social features resemble TikTok and Discord, but critics say the move could block young coders from learning and accessing open-source tools
A targeted malvertising campaign redirected users from Bing to a fake Teams download site, where a signed MSTeamsSetup.exe installed the Oyster backdoor — blocked just in time by Microsoft Defender ASR.
A sophisticated cyber campaign used DLL side‑loading to deliver a hybrid PlugX variant and the Bookworm backdoor to telecom and ASEAN networks, revealing renewed tactics by China‑linked threat actors.
CISA has confirmed hackers breached a U.S. federal agency by exploiting CVE-2024-36401, a critical flaw in GeoServer. Attackers used web shells, brute force, and lateral movement to persist in the network. CISA warns agencies to patch quickly and strengthen defenses.
Cybersecurity researchers have exposed GuardCB, a fake Russian antivirus app that hides powerful spyware. The malware, known as Android.Backdoor.916.origin, can spy on calls, texts, passwords, and even live stream audio and video from infected devices. Targeting Russian businesses, the app pretends to run virus scans while secretly exfiltrating sensitive data.
Google has warned of “AI psychosis” a hidden risk where prolonged chatbot interactions could distort user beliefs and behaviors. Its latest safety report calls for industry standards and oversight, highlighting risks to children, social well-being, and democratic discourse.
The Rhysida ransomware gang claims to have breached Maryland’s Department of Transportation, leaking personal data and demanding a $3.3 million ransom. Officials confirmed data loss affecting Maryland Transit Administration systems but said core services remain operational.
The new LAMEHUG malware uses AI models from Hugging Face to generate Windows commands dynamically. It spreads through phishing, disguises itself as AI apps, and steals system data, documents, and credentials while adapting to different environments.
Airports in Copenhagen and Oslo faced unexpected disruptions this weekend after drones were spotted near their airspace. With both airports temporarily halting flights, the incidents highlight growing concerns over drone misuse and the potential risks to aviation, national security, and public safety Drone Disruption in Copenhagen Copenhagen Airport, one of Scandinavia’s busiest hubs, suspended air…
English (UK)