data theft
-
Researchers: Stealit malware uses Node.js single-executable feature to spread
Fortinet researchers said the Stealit malware campaign is abusing Node.js’ experimental Single Executable Application feature and, in some variants, Electron, to distribute stealers and a RAT via counterfeit installers on file‑sharing sites.
-
Crimson Collective targets AWS cloud instances to steal data and extort firms
Researchers at Rapid7 said the Crimson Collective has been exploiting exposed AWS credentials to create privileged IAM users, export database and storage snapshots for exfiltration, and issue extortion demands; AWS recommended using short‑term, least‑privileged credentials and provided remediation guidance.
-
Zimbra zero-day reportedly used to target Brazilian military, report says
A stored cross-site scripting flaw in Zimbra Collaboration (CVE-2025-27915) was exploited in attacks that targeted the Brazilian military using malicious ICS calendar files, a StrikeReady Labs report said; Zimbra issued patches in January 2025.
-
FBI Warns of Fake IC3 Websites Designed to Steal Personal Data
The FBI warning highlights that criminals are creating spoofed IC3 websites to harvest personal data, noting more than 100 impersonation reports since late 2023 and urging direct access to IC3.gov and vigilance against look-alike domains and scam communications.
-
Stealthy PXA Stealer Targets Thousands Globally, Exposing Personal Data
The PXA Stealer malware has infected over 4,000 victims in 62 countries, leading to significant breaches of passwords, credit card data, and browser cookies, with stolen information sold on Telegram marketplaces.
-
New Choicejacking Attack Poses Threat to Smartphone Users at Public Chargers
Cybersecurity researchers have uncovered a new attack method called Choicejacking, which allows unauthorized access to smartphones through compromised public charging stations, often without users noticing. This development raises serious concerns about device security in public spaces.
-
British Cybercriminal Charged with $25 Million Data Theft
Kai West, a British national known as “IntelBroker,” has been indicted by U.S. authorities for allegedly stealing and selling sensitive data, leading to $25 million in damages. Facing serious charges, he is linked to significant data breaches affecting multiple high-profile organizations.
-
Advanced Malware Campaign Targets WordPress Sites, Poses Major Risks to Users
Cybersecurity experts reveal a sophisticated malware campaign targeting WordPress websites, capable of stealing sensitive information and evading detection. Discovered by the Wordfence team, the malware employs innovative tactics, including fake checkout forms and Cloudflare brand impersonation.
-
Surge in Android Malware: AntiDot Threats Compromise Thousands of Devices
Researchers have uncovered a significant surge in Android malware, particularly the AntiDot strain, which has compromised thousands of devices through sophisticated phishing campaigns and Malware-as-a-Service distribution.
-
Water Curse: A New Threat Actor Targeting GitHub to Distribute Malware
Researchers have unveiled Water Curse, a new threat actor leveraging GitHub repositories to distribute malware. The malware enables extensive data exfiltration and remote access, underscoring the risks of supply chain attacks through legitimate platforms.
