Infamous message board 4chan taken down following major hack
4chan, an infamous online forum, was taken offline earlier today after what appears to be a significant hack and has since been loading intermittently. Members…
Month: April 2025
Why 78% of Security Leaders Are Rethinking Their Entire Cyber Strategy in 2025
In the rapidly evolving digital landscape of 2025, cybersecurity has reached an inflection point that has prompted an unprecedented reassessment among security professionals. According to…
ChatGPT Image Generator Abused for Fake Passport Production
OpenAI’s ChatGPT image generator has been exploited to create convincing fake passports in mere minutes, highlighting a significant vulnerability in current identity verification systems. This…
Fake PDFCandy Websites Spread Malware via Google Ads
CloudSEK uncovers a sophisticated malware campaign where attackers impersonate PDFCandy.com to distribute the ArechClient2 information stealer. Learn how this scam works and how to protect…
Oxford Mathematician Shows Decisions Six Seconds Before They’re Made
John-Dylan Haynes (Professor at the Bernstein Center for Computational Neuroscience Berlin) shows Marcus Du Sautoy (Professor of Mathematics at the University of Oxford and current…
Microsoft blocks ActiveX by default in Microsoft 365, Office 2024
Microsoft announced it will begin disabling all ActiveX controls in Windows versions of Microsoft 365 and Office 2024 applications later this month. Introduced almost three…
How and Why Threat Hunting Teams Investigate Linux Malware Attacks
Linux cyber threats are less widespread than Windows ones yet it can make them even more dangerous. Underestimated and under-anticipated, they stab endpoints and networks…
Unmasking Xworm Payload Execution Path through Jailbreaking a Malicious JScript Loader
Security researchers are analyzing a sophisticated malware delivery mechanism that uses a JScript loader to deploy different payloads based on the victim’s geographic location. This…
A Fantasy Explanation of Standard vs. Blind SQL Injection
Many in InfoSec get confused about the difference between standard and blind SQL injection. Here’s a simple way to think about it. In both cases you…
New PasivRobber Malware Steals Data From macOS Systems and Applications
A sophisticated Chinese spyware suite dubbed “PasivRobber” that targets macOS devices, with particular focus on harvesting data from communication applications popular among Chinese users. The…
PasivRobber Malware Emerges, Targeting macOS to Steal Data From Systems and Apps
A sophisticated new malware suite targeting macOS, dubbed “PasivRobber,” has been discovered by security researchers. Identified on March 13, 2025, after a suspicious file named…
Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders
Apr 15, 2025Ravie LakshmananSupply Chain Attack / Malware Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that’s designed…