NPM Registry Flooded by Massive ‘IndonesianFoods’ Worm
Security researchers are raising the alarm about a massive, coordinated spam attack that has overwhelmed the npm registry, the world's largest storehouse for JavaScript code. Since early 2024, tens of thousands of bogus software packages have been uploaded in an automated campaign that one…
0 Comments7 Minutes
This Chrome Ethereum Wallet Steals Your Crypto Using the Blockchain Itself
A new and incredibly sneaky attack is targeting cryptocurrency users through the official Google Chrome Web Store. Security researchers have sounded the alarm on a malicious browser extension called "Safery: Ethereum Wallet" that does the exact opposite of what its name promises. It's a trap…
0 Comments7 Minutes
‘Whisper Leak’: How Spies Can See Your “Private” AI Chat Topics
Microsoft researchers have sounded the alarm on a major privacy flaw in popular AI chatbots. A new attack method, dubbed 'Whisper Leak,' can let spies figure out what you're talking about with an AI, even when your conversation is fully encrypted. This vulnerability poses a serious risk to…
0 Comments8 Minutes
Cisco Issues Alert on New Firewall Attack Targeting CVE-2025-20333 and CVE-2025-20362
Cisco issued an emergency alert this week, warning that a new wave of New Firewall Attacks are actively targeting major vulnerabilities in its firewall products. The company confirmed that hackers have developed a new method to exploit these weaknesses, which can knock critical devices offline and…
0 Comments7 Minutes
Google Rolls Out New Tool to Help Businesses Report Review-Based Extortion
The internet has become a digital minefield, with everyday users and businesses under constant attack from a growing army of scammers. In a new announcement, Google confirmed it is rolling out a special tool to help business owners fight back against a particularly nasty Report Review-Based…
0 Comments7 Minutes
NuGet Ticking Time Bombs Target Databases, Industrial Controls
A chilling discovery has been made in the .NET development world. Security experts have uncovered nine malicious packages on the NuGet repository, a central hub for developer tools. These packages, downloaded nearly 9,500 times, are not just simple malware; they are sophisticated "logic bombs"…
0 Comments6 Minutes
Botnet Surges in Automated Attacks Targeting Servers
Cybersecurity researchers are sounding a loud alarm: a massive, automated attack wave is crashing against the internet. Experts are reporting a major spike in scanning and exploitation attempts from powerful "botnets," which are vast armies of hijacked computers, smart devices, and servers.…
0 Comments7 Minutes
“Brash”: New Flaw Is a Time Bomb for Your Browser
A newly discovered and severe security flaw can be used to freeze and crash most of the world's top web browsers. A security researcher, Jose Pino, detailed the major bug, which he has named Brash. This flaw allows a malicious website to completely lock up a browser, forcing the user to manually…
0 Comments6 Minutes
Google’s AI stops 10 Billion Scams a Month
Google is fighting a massive, daily war against scammers on your behalf. The company revealed on Thursday that its security systems built into Android phones are protecting users from a staggering number of threats. Every single month, Android's AI stop more than 10 billion suspicious calls and…
0 Comments9 Minutes
Your VS Code Extensions May Be Spreading a New Virus
Developers are facing a new and deeply alarming threat that targets the very tools they use every day. Cybersecurity researchers at Koi Security have uncovered an advanced, self-spreading worm that is infecting extensions for Visual Studio Code (VS Code), one of the world's most popular code…
0 Comments6 Minutes