News

CSO Online2d
How phishers are weaponizing SVG images in zero-click, evasive campaigns
Seemingly harmless SVGs are packed with malicious JavaScript for a phishing redirect to actor-controlled URLs.
Infosecurity Magazine2d
Threat Actors Exploit SVG Files in Stealthy JavaScript Redirects
Once opened in a browser, the code decrypts a secondary payload using a static XOR key and then redirects the user to an attacker-controlled site via the window.location.href function. These URLs ...
WeLiveSecurity2d
Unmasking AsyncRAT: Navigating the labyrinth of forks
AsyncRAT has cemented its place as a cornerstone of modern malware and as a pervasive threat that has evolved into a ...
CSO Online11h
Ransomware actors target patched SonicWall SMA devices with rootkit
A hacker group connected to data theft, extortion, and ransomware is targeting SonicWall SMA 100 series appliances with a ...
Criminals are using a dangerous fake free VPN to spread malware via GitHub - here's how to stay safe
Security experts have warned of an emerging new cyber threat involving fake VPN software hosted on GitHub. A report from Cyfirma outlines how malware disguises itself as a “Free VPN for PC” and lures ...
The Silicon Review6d
Google’s MedGemma AI Goes Open-Source to Advance Transparent Medical Imaging
Google releases MedGemma—open-source multimodal and text models for medical imaging—boosting transparency and accelerating ...
North Korean Hackers Deploy Rare Nim-Based Malware on macOS to Target Web3 Startups
A new Nim-based malware campaign targets macOS users in crypto and Web3 firms, using novel persistence tricks and encrypted ...
Cryptopolitan on MSN6d
Social engineering campaign targets crypto users via fake startups, report says
Darktrace research reveals ongoing social engineering campaign targeting crypto users through fake startup companies ...