FBI: Russian hackers now target Signal backup recovery keys

Russian Hackers Target Signal Users with Sophisticated Phishing Campaign A sophisticated phishing campaign tied to Russian intelligence services has evolved to target Signal users, potentially giving attackers access to their historical messages. The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have issued a public service announcement warning about the threat, … Read more

Clean GitHub repo tricks AI coding agents into running malware

A sophisticated new attack method has been uncovered by researchers at Mozilla’s Zero Day Investigative Network (0DIN) AI security platform, which allows an attacker to trick a developer’s AI coding agent into running malware on their device. This insidious tactic exploits the trust placed in seemingly benign GitHub repositories and AI-powered tools like Claude Code. … Read more

Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

A sophisticated Chinese-speaking Advanced Persistent Threat (APT) group has been linked to a new backdoor malware campaign targeting organizations in Southeast Asia, sparking concerns about the region’s cybersecurity landscape. The malicious activity, which began earlier this year, involves the deployment of a novel backdoor tool known as TinyRCT. The attackers are believed to have compromised … Read more

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

Cyberattacks have just escalated with the emergence of SharkLoader, a new malware strain that combines the potency of Cobalt Strike with sophisticated AI-driven reconnaissance capabilities. This menacing fusion has left security experts scrambling to contain its spread and protect vulnerable organizations worldwide. SharkLoader’s malicious activity was first detected in April 2023 by cybersecurity firms monitoring … Read more

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

A devastating new threat has emerged, with Russian intelligence hackers using sophisticated tactics to compromise encrypted messaging service Signal’s backup recovery keys. The warning comes from the FBI, which has issued an alert to its partners and affiliates detailing the highly targeted attacks. If successful, these attacks could potentially allow hackers to access users’ sensitive … Read more

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

A significant breakthrough in artificial intelligence (AI) research is sparking both excitement and concern among tech enthusiasts and security professionals alike. OpenAI, a leading developer of advanced language models, has announced a new version of its GPT (Generative Pre-trained Transformer) technology, known as GPT-5.6 Sol. While the company touts this innovation as a major leap … Read more

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

Ukraine Discovers Sophisticated Phishing Tactic Used by Russian Intelligence to Steal Messaging Credentials A brazen and highly sophisticated phishing operation, allegedly carried out by Russian intelligence services, has been uncovered in Ukraine. The attack relied on a clever ruse, where hackers impersonated Ukrainian citizens and sent fake support texts to targeted individuals, tricking them into … Read more

CISA sets urgent deadline to fix Cisco flaw exploited in attacks

The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning to federal agencies to patch two recently discovered vulnerabilities within a tight deadline. The flaws, one of which is already being actively exploited by attackers, put sensitive systems at risk of compromise. A server-side request forgery (SSRF) vulnerability in Cisco’s Unified Communications … Read more

FBI: Russian hackers now target Signal backup recovery keys

Russian Hackers Evolve Tactics to Steal Signal Backup Recovery Keys, Exposing Users’ Historical Messages A phishing campaign targeting Signal users tied to Russian intelligence services has taken a concerning turn. The FBI and CISA have issued an updated public service announcement warning that hackers are now attempting to steal Signal Backup Recovery Keys, granting them … Read more

Clean GitHub repo tricks AI coding agents into running malware

A newly discovered vulnerability in AI-powered coding tools has left security experts sounding the alarm. Researchers at Mozilla’s Zero Day Investigative Network (0DIN) have demonstrated a method by which an attacker can plant malware on a developer’s device without leaving any suspicious code or exploit in the repository. The attack relies on a seemingly innocuous-looking … Read more