News
-
Security Flaw in LangChain’s LangSmith Exposes Users to Data Theft
A security flaw in LangChain’s LangSmith platform has been revealed, allowing hackers to potentially intercept sensitive user data. The vulnerability has now been patched, but researchers caution about the risks associated with such cyber threats.
-
Fraudulent Instagram Ads Target Canadian Bank Customers with AI Deepfakes
Fraudulent Instagram ads impersonating financial institutions BMO and EQ Bank are targeting Canadian consumers with phishing scams involving AI deepfakes. These ads mislead users into providing personal information, prompting a response from affected banks and Meta’s commitment to investigate and remove fraudulent content.
-
New Flodrix Botnet Exploits Vulnerabilities in Langflow Framework
A new botnet campaign exploiting vulnerabilities in the Langflow framework has emerged, allowing attackers to deploy the Flodrix malware. Cybersecurity experts emphasize the urgency of addressing this critical security flaw.
-
CISA Warns of Critical Vulnerability in TP-Link Routers Amid Active Exploitation
CISA has identified a critical vulnerability in TP-Link routers, urging users to take immediate action as evidence of active exploitation emerges. The agency’s guidelines are designed to mitigate the risks associated with this command injection vulnerability, affecting multiple router models.
-
Cyber Crime Crew Scattered Spider Targets US Insurance Companies Amid Ransomware Surge
A rise in ransomware attacks targeting US insurance companies has been attributed to the cybercrime group Scattered Spider, prompting warnings from Google about the necessity for heightened security measures within the industry.
-
Infoblox Exposes Links Between Cybercrime Groups and AdTech Firms
Infoblox Threat Intel has revealed a hidden alliance between cybercrime group VexTrio and legitimate AdTech companies, indicating a complex web of relationships in the digital landscape that warrants ongoing scrutiny.
-
Critical Vulnerability Discovered in ASUS Armoury Crate Software
A serious vulnerability in ASUS Armoury Crate software could allow attackers to achieve SYSTEM-level privileges on Windows machines, according to a report detailing the flaw. Users are urged to update their applications to mitigate potential risks.
-
Zoomcar Reports Data Breach Affecting 8.4 Million Users
Zoomcar Holdings has reported a data breach affecting 8.4 million users, with unauthorized access resulting in the exposure of sensitive customer information. The company is currently investigating the breach, which follows a previous incident in 2018 that compromised data of over 3.5 million users.
-
Emerging Anubis Ransomware Poses Dual Threat to Victims
The Anubis ransomware poses a dual threat by encrypting and permanently erasing files, significantly heightening risks for victims across various industries, as highlighted in recent reports.
-
SinoTrack GPS Vulnerabilities Expose Vehicles to Potential Attacks
Vulnerabilities in the SinoTrack GPS tracking platform may allow attackers to track vehicle locations and control vehicle functions. CISA warns users to change default passwords and protect device identifiers.
