Palo Alto Networks, Zscaler and PagerDuty Hit in Salesforce Linked Data Breaches
Hackers exploited the Salesloft Drift app to steal OAuth tokens and access Salesforce data, exposing customer details at major tech...
Read more →Category: HackRead
Users Treat AI as Therapist, Lawyer, Confidant
Leaked ChatGPT chats reveal users sharing sensitive data, resumes, and seeking advice on mental health, exposing risks of oversharing with...
Read more →
Silver Fox APT Exploits Signed Windows Driver to Deliver ValleyRAT
Check Point reports Silver Fox APT using a signed WatchDog driver flaw to disable Windows security and deliver ValleyRAT malware....
Read more →
How Live Threat Intelligence Cuts Cybersecurity Expenses
Cutting security costs may seem attractive from a budget perspective. However, the financial consequences of inadequate protection can be devastating....
Read more →
Hidden Commands in Images Exploit AI Chatbots and Steal Data
Hidden commands in images can exploit AI chatbots, leading to data theft on platforms like Gemini through a new image...
Read more →
What It Is and Why You Need an Agency for It
As digital marketing keeps changing, staying ahead means adopting the latest strategies that enhance online visibility and user engagement. One...
Read more →
North Korea’s ScarCruft Targets Academics With RokRAT Malware
A new report reveals North Korea-linked ScarCruft is using RokRAT malware to target academics in a phishing campaign. Read about...
Read more →
Amazon Disrupts Russian APT29 Watering Hole Targeting Microsoft Authentication
Amazon has disrupted a Russian APT29 watering hole campaign that used compromised sites to target Microsoft authentication with malicious redirects....
Read more →
Feds Seize VerifTools.Net, Operators Relaunch with VerifTools.com
Authorities in the United States and the Netherlands have seized VerifTools, a marketplace selling fake IDs for cybercrime. The operation...
Read more →
WhatsApp 0-Day Exploited in Attacks on Targeted iOS and macOS Users
WhatsApp has patched a critical 0-day (CVE-2025-55177) that allowed zero-click spyware attacks on iOS and Mac users. The flaw was...
Read more →
Hackers Exploit CrushFTP Zero-Day to Take Over Servers
WatchTowr Labs uncovers a zero-day exploit (CVE-2025-54309) in CrushFTP. The vulnerability lets hackers gain admin access via the web interface....
Read more →
8 Malicious NPM Packages Stole Chrome User Data on Windows
JFrog researchers found eight malicious NPM packages using 70 layers of obfuscation to steal data from Chrome browser users on...
Read more →