Security researchers have discovered a newly identified malware family called AryStinger that is quietly infecting outdated internet routers around the world. According to researchers from QiAnXin XLab, more than 4,300 devices have already been compromised, and the number continues to grow. Unlike many router-based botnets that focus on launching DDoS attacks, AryStinger is designed to … Continued
Salesforce has disabled the connection between its platform and Klue Battlecards after a security incident involving the abuse of OAuth tokens. The company took the action as a precautionary measure after investigators discovered that attackers had used a compromised Klue integration to access customer data stored in Salesforce environments. Reports indicate that the issue was … Continued
Federal prosecutors have charged a New York man in a cyberstalking case that highlights the growing misuse of artificial intelligence for online harassment. Authorities say 21-year-old Anthony Belford carried out a months-long campaign targeting a college student in Georgia. The case has drawn attention because it involved both AI-generated nude images and fake online identities … Continued
Apple has released an important security update for Beats Studio Buds after fixing a vulnerability that could allow nearby attackers to misuse the earbuds’ microphone. The issue affected devices that were not yet paired and were actively searching for Bluetooth connections. According to Apple’s security advisory, an attacker within Bluetooth range could potentially listen through … Continued
A recent security incident involving Novo Nordisk has drawn attention to an often-overlooked cybersecurity problem inside modern software development environments. Reports indicate that a leaked GitHub access token exposed weaknesses in the company’s development pipeline and highlighted how sensitive credentials can become a major security risk when not properly managed. The incident has become an … Continued
Many businesses believe that if their payment systems pass a PCI DSS assessment, their online checkout pages are secure. However, security experts are warning that this assumption is no longer true. Modern checkout pages rely on numerous third-party scripts such as analytics tools, marketing tags, chat widgets, and tracking technologies. If one of these scripts … Continued
Cybersecurity researchers have uncovered a large-scale crypto clipper campaign that uses fake online promotion techniques to spread malware and steal cryptocurrency from victims. According to findings from Check Point Research, the attackers are using paid articles on legitimate news websites, fake reviews, social media content, and software-hosting platforms to make their malicious tools appear trustworthy. … Continued
India’s temporary Telegram ban created unexpected problems beyond its borders, with some users in the UAE and other regions reporting difficulties accessing the messaging platform. The issue began after the Indian government ordered a temporary block on Telegram until June 22, citing its alleged use by organized cheating networks linked to the NEET 2026 medical … Continued
Cybersecurity researchers have uncovered a new malware campaign that targeted software developers through the JetBrains Marketplace. Attackers uploaded 15 malicious plugins disguised as AI coding assistants. These plugins promised useful features such as code review, bug detection, unit test generation, and AI-powered coding help. However, their real purpose was to steal sensitive API keys from … Continued
Cybersecurity researchers have uncovered a new tactic being used by a ransomware group to hide malicious communications by abusing Microsoft Teams relay infrastructure. The technique allows attackers to disguise their command-and-control traffic as legitimate Microsoft Teams activity. By blending in with trusted network traffic, the criminals make it much harder for security tools and defenders … Continued
