CyberSecurity
Stay ahead of the digital threat landscape with the latest insights on data breaches, critical vulnerabilities, ransomware defense, and proactive security strategies.
62 articles

Russian Sandworm Hackers Adopt Clickfix Attacks to Target Ukrainian Networks
Sandworm, a Russian GRU hacking unit, has adopted Clickfix attacks using fake CAPTCHAs to compromise networks in Ukraine. Ukraine's CERT warns of the shift.

Privacy-Focused GrapheneOS Gains Ground as Tool for Domestic Abuse Victims
GrapheneOS, a hardened Android OS, is increasingly recommended for domestic abuse victims to prevent digital surveillance by abusers. Its enhanced privacy features offer a critical safety layer.

Shark Robot Vacuum Flaw Exposes Millions to Remote Hijack via Cloud Certificates
An unpatched AWS IoT certificate flaw lets attackers hijack Shark robot vacuums, accessing live cameras and Wi-Fi passwords. Over 1.5 million devices seen in one region.

Ransomware Attack Forces Coca-Cola to Halt Fairlife Dairy Production
Coca-Cola suspended production at its Fairlife dairy unit after a ransomware attack. The incident disrupts operations and raises concerns about food supply chain cybersecurity.

Weather Data Sabotage Threatens Forecasts as AI Reliance Grows
Manipulation of weather stations, like the recent CDG airport incident, exposes growing risks as AI models increasingly depend on raw observational data. Experts warn of coordinated attacks that could disrupt energy markets and disaster response.

Privacy Incidents Expose the Growing Risk of Unprotected Personal Photos
Real-world privacy incidents show how personal photos can be exploited. From cloud leaks to deepfakes, the need for stronger protection is urgent.

LinkedIn Scams Surge as Identity Theft Targets Professionals
LinkedIn faces a growing crisis of scammers and identity theft, with fake profiles and phishing attacks targeting professionals. The platform's verification gaps pose serious risks.

The Hidden Operators Behind Internet Routing Security
RPKI, a critical security protocol for internet routing, relies largely on volunteer-run servers. This decentralized model raises reliability concerns.

Security Researchers Turn Prompt Injections Into Traps for AI Agents
Tracebit embeds Prompt injections alongside AWS secrets to force malicious LLMs to shut down, flipping a known attack into a defense.

GigaWiper Malware Combines Drive Wiping With Live Screen Streaming
Microsoft uncovered GigaWiper, a destructive backdoor that wipes hard drives and streams screens live. The malware merges multiple families into a single threat.

GhostLock Vulnerability Exposes 15-Year Flaw in All Linux Systems
A stack use-after-free bug named GhostLock has been discovered in the Linux kernel, affecting every distribution for 15 years.

Phishing Scams Surge: How to Identity Malicious Links Before It's Too Late
Scammers impersonate banks and contacts to trick users into clicking malicious links. Experts urge verifying senders and checking URLs.

QuadRF Technology Spots Drones and Reads WiFi Through Walls
QuadRF uses radio frequency analysis to detect drones and see WiFi signals through walls, raising serious privacy and security concerns.

Build Tool Lets Developers Create Custom Vulnerability Testing Harnesses
A new approach to security testing allows teams to tailor harnesses for specific codebases. This shift promises faster detection and deeper coverage.

Monitors From LG and Alienware Are Installing Adware on Windows PCs
LG and Alienware monitors are auto-installing McAfee adware on Windows without user consent, sparking privacy concerns over hardware bloatware.

New Hack 'HalluSquatting' Exploits AI Hallucinations for Malicious Code Execution
HalluSquatting exploits LLM hallucinations to trick AI agents into running malicious code from fake GitHub repositories, with success rates up to 100%.

FBI and Google Dismantle Botnet That Hijacked 2 Million Smart TVs
The FBI and Google took down the Popa botnet, which infected 2 million smart TVs and streaming devices to create a hidden proxy network for cybercriminals.

Data Breach Exposes Millions of Driver's License Numbers
A massive data breach at a US insurance giant exposed millions of driver's license numbers in the largest incident of 2026.

AI Prompt Injection Opens Door to Massive Botnet Attacks
Hackers can exploit nine popular AI tools to build botnets using prompt injection, a flaw that lets malicious commands bypass security.
