Cybercrime
-
Cybercriminals Target Users with Malicious Fake Apps in New Mobile Malware Campaign
A new mobile malware campaign named SarangTrap is targeting users in South Korea with fake apps that steal personal information, underscoring ongoing threats posed by cybercriminals.
-
Tea Dating App Data Breach Gets Worse, Exposes More Private User Information
The Tea app faces a significant data breach, exposing 59 GB of user data, including sensitive personal messages and images, due to vulnerabilities in its security. Authorities and cybersecurity experts are investigating the matter as the company attempts to mitigate the fallout and protect affected users.
-
U.S. Sanctions North Korean Hacker Linked to Remote IT Worker Fraud Scheme
The U.S. Treasury has sanctioned North Korean hacker Song Kum Hyok for facilitating a fraudulent IT worker scheme targeting American companies. This move highlights concerns over North Korea’s cyber operations as key to generating revenue under international sanctions.
-
GLOBAL GROUP Ransomware Claims Breach of Media Giant Albavisión
The GLOBAL GROUP ransomware gang has claimed responsibility for breaching Albavisión, a major Spanish-language media conglomerate, stealing 400 GB of data and threatening to publish it if negotiations are not initiated within 15 days. This incident underscores the escalating risk of ransomware attacks against critical media and healthcare sectors.
-
Vulnerability in macOS Spotlight Exposes User Data
A vulnerability in macOS, known as CVE-2025-31199, has been revealed, allowing attackers to exploit Spotlight plugins to access protected user data, including sensitive files cached by Apple Intelligence. Apple has issued a patch to address the flaw.
-
Naval Group Investigates Cyber Attack Exposing Sensitive Data
Naval Group, a major player in the French defense industry, is investigating a cyber attack after hackers leaked sensitive internal data online. The incident raises serious security concerns as the hackers threaten to disseminate additional data if no response is received.
-
Data Breach Exposes Tens of Thousands of User Images from Women’s Dating App Tea
The Tea app has faced a major data breach affecting around 72,000 user images, raising significant privacy concerns amidst its growing popularity as a women-focused social platform.
-
Cybercrime Group Scattered Spider Targets VMware ESXi in Coordinated Attacks
Scattered Spider has intensified its attacks against VMware ESXi hypervisors in North America, employing advanced social engineering tactics that pose an acute risk to critical infrastructure. Google’s Mandiant team warns that organizations must adopt proactive security measures to defend against these targeted attacks.
-
Aeroflot Flights Disrupted Amid IT System Failure Attributed to Hacktivist Groups
Aeroflot faced substantial flight disruptions on Monday due to an IT system failure, purportedly caused by hacktivist groups. The resulting cancellations and delays sparked frustration among passengers as the airline’s operations continued to be affected by external pressures, including geopolitical tensions.
-
Significant Vulnerabilities Discovered in Tridium’s Niagara Framework
Researchers have discovered multiple critical vulnerabilities in Tridium’s Niagara Framework, a platform widely used in building management, which could allow attackers to compromise systems on the same network. These vulnerabilities have high CVSS scores and can lead to unauthorized access and operational disruptions.
