Chrome 136 Patches Active Data-Leak Bug
A fast patch for a sneaky cross-origin loophole Google has pushed an emergency update to the stable channel of its Chrome browser after a security researcher demonstrated a simple trick that lets one website siphon off information meant for another. The glitch, catalogued as CVE-2025-4664, sits…
0 Comments6 Minutes
Telegram Marketplace ‘Xinbi Guarantee’ Moves $8.4 Billion
A New Player Rivals HuiOne in the Shadow Economy A Chinese-language marketplace called Xinbi Guarantee has quietly grown into a multibillion-dollar hub for illegal trade on Telegram, according to blockchain forensics firm Elliptic. The investigators say the platform, which began operating in 2022,…
0 Comments7 Minutes
Malicious Solana PyPI Package Steals Code
Discovery of the Rogue Library Late last month security analysts at ReversingLabs stumbled on an impostor Python package hiding in plain sight on the official Python Package Index (PyPI). The file was uploaded under the name “solana-token,” hinting that it could help programmers interact with the…
0 Comments7 Minutes
ASUS Patches Serious Security Bugs in DriverHub
Vulnerabilities Could Let Hackers Run Malicious Code on Targeted Systems ASUS has released a critical security update for its DriverHub utility after security experts uncovered two significant vulnerabilities that could put users at risk. If exploited, these flaws could allow attackers to remotely…
0 Comments5 Minutes
Europol Pulls the Plug on Major DDoS-for-Hire Rings
Young Suspects Caught in Poland, Web Domains Grabbed in the U.S. Four Polish citizens between 19 and 22 years old have been taken into custody after an international probe into paid-for cyber-attacks. At the same time, U.S. agents seized nine web addresses that once fronted bogus “stress-testing”…
0 Comments2 Minutes
NETXLOADER Opens the Door for a Fresh Qilin Ransomware Surge
A Hidden Loader Comes to Light Trend Micro has lifted the curtain on a stealthy .NET program they have christened NETXLOADER. First spotted in attacks during November 2024, the loader works hand-in-hand with SmokeLoader to unleash the Agenda ransomware (better known as Qilin). Packed with the…
0 Comments3 Minutes
URGENT! Android’s May 2025 Security Patch
The Big Deal: CVE‑2025‑27363 Google’s latest May 2025 Security Patch tackles 46 security issues, but the one getting all the buzz is CVE‑2025‑27363. It lives in Android’s System component and comes from a bug in the popular FreeType font library. In simple terms, a specially crafted font file can…
0 Comments3 Minutes
Golden Chickens Hackers Launch New Malware
A hacking group called Golden Chickens (also known as Venom Spider) has been spotted using two new malware programs—TerraStealerV2 and TerraLogger. These tools are designed to steal sensitive information and record everything victims type on their keyboards. You might be interested in: WordPress…
0 Comments3 Minutes
WordPress Plugin Gives Attackers Full Control
Fake Plugin Gives Attackers Full Control of Infected Websites Security experts have uncovered a dangerous new malware campaign targeting WordPress plugins. Hackers are tricking site owners by hiding malicious code inside what appears to be a security plugin. How the Fake Plugin Works The malware,…
0 Comments3 Minutes
TikTok Fined €530 Million for Breaking EU Data Rules
Irish Watchdog Orders TikTok to Stop Sending User Data to China Ireland's Data Protection Commission (DPC) has hit TikTok with a massive €530 million ($601 million) fine for failing to protect European users' data. The regulator found that the video-sharing app broke strict EU privacy laws by…
1 Comment2 Minutes