Payroll Scam Uses SEO Tricks and Home Routers to Steal
A New Kind of Search‐Engine Trap Cyber-security specialists at ReliaQuest say they have uncovered a fresh wave of online fraud that hijacks search-engine results to trick employees into handing over their payroll passwords. The scheme, first spotted in May 2025 when it struck a large manufacturing…
0 Comments6 Minutes
Protecting Children on the Web: Understanding the Risks and How to Respond
Protecting Children on the Web The internet is woven into nearly every part of daily life, and for young people it can feel as natural as breathing. Yet the websites, games, and social platforms that keep kids entertained and connected also expose them to dangers that parents and guardians may not…
0 Comments7 Minutes
Fake Kling AI Ads on Facebook Spread Malware Through Bogus Websites
How the ruse starts on social media Early this year, Facebook and Instagram users began seeing what looked like perfectly normal sponsored posts for Kling AI, an image-and-video generator launched by Beijing-based Kuaishou Technology in June 2024. The service has drawn more than 22 million users as…
0 Comments7 Minutes
Chrome 136 Patches Active Data-Leak Bug
A fast patch for a sneaky cross-origin loophole Google has pushed an emergency update to the stable channel of its Chrome browser after a security researcher demonstrated a simple trick that lets one website siphon off information meant for another. The glitch, catalogued as CVE-2025-4664, sits…
0 Comments6 Minutes
Telegram Marketplace ‘Xinbi Guarantee’ Moves $8.4 Billion
A New Player Rivals HuiOne in the Shadow Economy A Chinese-language marketplace called Xinbi Guarantee has quietly grown into a multibillion-dollar hub for illegal trade on Telegram, according to blockchain forensics firm Elliptic. The investigators say the platform, which began operating in 2022,…
0 Comments7 Minutes
Malicious Solana PyPI Package Steals Code
Discovery of the Rogue Library Late last month security analysts at ReversingLabs stumbled on an impostor Python package hiding in plain sight on the official Python Package Index (PyPI). The file was uploaded under the name “solana-token,” hinting that it could help programmers interact with the…
0 Comments7 Minutes
ASUS Patches Serious Security Bugs in DriverHub
Vulnerabilities Could Let Hackers Run Malicious Code on Targeted Systems ASUS has released a critical security update for its DriverHub utility after security experts uncovered two significant vulnerabilities that could put users at risk. If exploited, these flaws could allow attackers to remotely…
0 Comments5 Minutes
Europol Pulls the Plug on Major DDoS-for-Hire Rings
Young Suspects Caught in Poland, Web Domains Grabbed in the U.S. Four Polish citizens between 19 and 22 years old have been taken into custody after an international probe into paid-for cyber-attacks. At the same time, U.S. agents seized nine web addresses that once fronted bogus “stress-testing”…
0 Comments2 Minutes
NETXLOADER Opens the Door for a Fresh Qilin Ransomware Surge
A Hidden Loader Comes to Light Trend Micro has lifted the curtain on a stealthy .NET program they have christened NETXLOADER. First spotted in attacks during November 2024, the loader works hand-in-hand with SmokeLoader to unleash the Agenda ransomware (better known as Qilin). Packed with the…
0 Comments3 Minutes
URGENT! Android’s May 2025 Security Patch
The Big Deal: CVE‑2025‑27363 Google’s latest May 2025 Security Patch tackles 46 security issues, but the one getting all the buzz is CVE‑2025‑27363. It lives in Android’s System component and comes from a bug in the popular FreeType font library. In simple terms, a specially crafted font file can…
0 Comments3 Minutes