The cyber-espionage group Bloody Wolf has expanded its operations across Central Asia. They first started targeting organisations in Kyrgyzstan in mid-2025. Later, the same activity was observed spreading into Uzbekistan. Their main targets include government, finance and IT sectors. The attackers send spear-phishing emails that look like official government messages. These emails often pretend to … Continued
NordVPN has officially rolled out its Black Friday 2025 deal, offering a massive 77% discount on select long-term plans. Most of these discounted plans also include three extra months free, making this one of the company’s biggest promotions of the year. The offer has been highlighted across major tech platforms for its unusually large price … Continued
Cybersecurity is entering a new era in 2026. Threat actors are expected to use AI to speed up and expand attacks, while defenders will use AI agents to improve security operations. This shift brings new risks, including emerging “shadow agent” threats and a growing need for stronger identity and access management. Ransomware and data-theft extortion … Continued
OpenAI has reported a security incident that came from its third-party analytics vendor, Mixpanel. The issue began when an attacker gained unauthorized access to part of Mixpanel’s systems on November 9, 2025. Mixpanel later shared the affected dataset with OpenAI on November 25. After reviewing it, OpenAI confirmed that some API customer data was included. … Continued
Security researchers have introduced a new technique called HashJack, which uses the “#” part of a URL to hide malicious instructions. This portion of a link is normally ignored by servers, making the attack hard to detect. When an AI browser or assistant loads the link, it reads the hidden instructions from the fragment. This … Continued
A harmful Chrome extension called Crypto Copilot has been caught secretly adding extra fees during Raydium swaps. Security researchers found that it quietly inserted hidden Solana transfers inside every transaction. Users thought they were only confirming a normal Raydium swap, but another instruction was added in the background. This caused small amounts of SOL to … Continued
Malicious Blender (.blend) model files are now being used to spread the StealC V2 infostealing malware. Attackers hide harmful Python scripts inside 3D model files and upload them to asset marketplaces. When users open these models in Blender, the script runs automatically if the auto-run option is enabled. This makes the infection extremely easy to … Continued
A new malware campaign called Shai-Hulud is causing serious trouble for npm users. Security researchers have confirmed that this malware spreads like a worm inside the JavaScript ecosystem. It takes over developer accounts and injects malicious code into popular packages. Because of its scale, it is being seen as one of the biggest recent supply-chain … Continued
Iberia Airlines has informed its customers that a data breach at one of its suppliers has exposed certain customer information. The Spanish flag carrier says unauthorized access to the supplier’s systems compromised the confidentiality of some customer data. The incident highlights how third-party vendors can become weak links in enterprise security. The airline says it … Continued
A serious cybersecurity threat has come to light as attackers are now using the ShadowPad malware to exploit a major flaw in Windows Server Update Services (WSUS). The vulnerability, identified as CVE-2025-59287, allows attackers to run commands on a WSUS server without needing any login. Security researchers have confirmed that this flaw is already being … Continued
