Latest Cybersecurity News and Articles
25 February 2025
Cybersecurity researchers are calling attention to an ongoing campaign that's targeting gamers and cryptocurrency investors under the guise of open-source projects hosted on GitHub.
The campaign, which spans hundreds of repositories, has been dubbed GitVenom by Kaspersky.
"The infected projects include an automation instrument for interacting with Instagram accounts, a Telegram bot that enables
25 February 2025
Security leaders discuss the 7-year-old vulnerability that was exploited in the Salt Typhoon attack.
25 February 2025
Various industrial organizations in the Asia-Pacific (APAC) region have been targeted as part of phishing attacks designed to deliver a known malware called FatalRAT.
"The threat was orchestrated by attackers using legitimate Chinese cloud content delivery network (CDN) myqcloud and the Youdao Cloud Notes service as part of their attack infrastructure," Kaspersky ICS CERT said in a Monday
24 February 2025
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security flaws impacting Adobe ColdFusion and Oracle Agile Product Lifecycle Management (PLM) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerabilities in question are listed below -
CVE-2017-3066 (CVSS score: 9.8) - A deserialization vulnerability impacting
24 February 2025
The question is whether Majorana 1 advances progress toward quantum computing – or for security professionals, the arrival of computers powerful enough to break PKE.
The post What Microsoft’s Majorana 1 Chip Means for Quantum Decryption appeared first on SecurityWeek.
24 February 2025
Rad Security has raised $14 million in Series A funding for a defense platform for AI workloads and cloud infrastructure.
The post Rad Security Raises $14 Million for AI, Cloud Security Platform appeared first on SecurityWeek.
24 February 2025
OpenAI has banned ChatGPT accounts used by Chinese threat actors, including ones leveraged for the development of spying tools.
The post OpenAI Bans ChatGPT Accounts Used by Chinese Group for Spy Tools appeared first on SecurityWeek.
24 February 2025
The SEC has announced it established the Cyber and Emerging Technologies Unit.
24 February 2025
Cybersecurity researchers are warning of a new campaign that leverages cracked versions of software as a lure to distribute information stealers like Lumma and ACR Stealer.
The AhnLab Security Intelligence Center (ASEC) said it has observed a spike in the distribution volume of ACR Stealer since January 2025.
A notable aspect of the stealer malware is the use of a technique called dead drop
24 February 2025
Texas automated endpoint management vendor banks $500 million infusion in Series C extensions that values the company at $5 billion.
The post NinjaOne Scores $500M in Series C Extensions at $5 Billion Valuation appeared first on SecurityWeek.
24 February 2025
Recent research found that .1% of U.S. and U.K. consumers could accurately distinguish real from fake content across images and video.
24 February 2025
Australian government entities have been banned from using products and services of Russian cybersecurity company Kaspersky.
The post Kaspersky Banned on Australian Government Systems appeared first on SecurityWeek.
24 February 2025
A Michigan man has been charged for buying compromised credentials on Genesis Market and using and selling them.
The post US Charges Genesis Market User appeared first on SecurityWeek.
24 February 2025
Welcome to your weekly roundup of cyber news, where every headline gives you a peek into the world of online battles. This week, we look at a huge crypto theft, reveal some sneaky AI scam tricks, and discuss big changes in data protection.
Let these stories spark your interest and help you understand the changing threats in our digital world.
⚡ Threat of the Week
Lazarus Group Linked to
24 February 2025
Google Cloud has announced quantum-safe digital signatures in Google Cloud Key Management Service (Cloud KMS) for software-based keys as a way to bulletproof encryption systems against the threat posed by cryptographically-relevant quantum computers.
The feature, currently in preview, coexists with the National Institute of Standards and Technology's (NIST) post-quantum cryptography (PQC)
24 February 2025
Ransomware doesn’t hit all at once—it slowly floods your defenses in stages. Like a ship subsumed with water, the attack starts quietly, below the surface, with subtle warning signs that are easy to miss. By the time encryption starts, it’s too late to stop the flood.
Each stage of a ransomware attack offers a small window to detect and stop the threat before it’s too late. The problem is
24 February 2025
According to Microsoft, quantum computers could be built within years instead of decades, citing a recent breakthrough.
24 February 2025
Australia has become the latest country to ban the installation of security software from Russian company Kaspersky, citing national security concerns.
"After considering threat and risk analysis, I have determined that the use of Kaspersky Lab, Inc. products and web services by Australian Government entities poses an unacceptable security risk to Australian Government, networks and data,
24 February 2025
Explore industry moves and significant changes in the industry for the week of February 24, 2025. Stay updated with the latest industry trends and shifts.
24 February 2025
Companies and experts have found evidence linking the $1.5 billion Bybit cryptocurrency heist to North Korean Lazarus hackers.
The post $1.5 Billion Bybit Heist Linked to North Korean Hackers appeared first on SecurityWeek.