DuckDuckGo has announced a substantial upgrade to its Scam Blocker security tool, significantly expanding its capabilities to address the evolving landscape of cyber threats. The enhanced protection system now includes detection and blocking of fraudulent e-commerce platforms, fake cryptocurrency exchanges, and scareware applications, marking a major milestone in privacy-focused cybersecurity. Enhanced Threat Detection Capabilities The … Read more

Canadian cybersecurity researchers from Citizen Lab have uncovered a sophisticated cyber espionage campaign targeting journalists using Graphite spyware developed by Israeli firm Paragon Solutions. The attack successfully compromised iPhones running iOS 18.2.1 through a previously unknown zero-day vulnerability, highlighting critical security gaps in Apple’s mobile ecosystem. Coordinated Attack on Media Personnel The cyber espionage operation … Read more

Indian peer-to-peer car sharing platform Zoomcar Holdings has fallen victim to a significant cybersecurity incident that compromised the personal data of 8.4 million users. This breach represents one of the most substantial security incidents in the shared mobility industry, highlighting critical vulnerabilities in digital transportation platforms. Discovery and Initial Response to the Cyber Attack The … Read more

Cybersecurity researchers at Ben-Gurion University have unveiled a groundbreaking attack vector called SmartAttack that fundamentally challenges the security assumptions surrounding air-gapped computer systems. This sophisticated technique leverages smartwatches as covert communication channels to extract sensitive data from isolated networks using ultrasonic sound waves, demonstrating that physical isolation may not guarantee complete protection against determined adversaries. … Read more

Cybersecurity researchers have uncovered a sophisticated phishing campaign targeting users of the popular DeepSeek AI platform. The attack leverages a fraudulent website to distribute a newly identified malware strain called BrowserVenom, which poses significant risks to user privacy by intercepting and analyzing all network traffic. This campaign represents a concerning evolution in cybercriminal tactics, exploiting … Read more

International law enforcement agencies achieved a significant victory against cybercrime with the successful takedown of Archetyp, one of the largest illegal marketplaces operating on the dark web. The coordinated effort, spanning six countries, completely dismantled the infrastructure of a platform that served as a central hub for international drug trafficking for nearly five years. Scale … Read more

Cybersecurity researchers have uncovered a critical security flaw in the notorious DanaBot botnet that inadvertently exposed cybercriminals’ sensitive information for three years. This vulnerability, dubbed DanaBleed, became instrumental in a successful international law enforcement operation that dismantled one of the most sophisticated malware-as-a-service platforms in operation. DanaBot Evolution: From Banking Trojan to Espionage Platform First … Read more

Cybersecurity researchers from Qualys Threat Research Unit have uncovered two critical vulnerabilities affecting popular Linux distributions that, when combined, create a dangerous pathway for attackers to gain administrative privileges. These security flaws pose a significant threat to enterprise infrastructure due to their low exploitation complexity and widespread impact across multiple Linux environments. Understanding the Technical … Read more

German privacy-focused email provider Cock.li has fallen victim to a significant cyberattack that compromised personal data of more than 1 million users. The breach resulted from attackers exploiting a critical SQL injection vulnerability in the widely-used Roundcube Webmail client, highlighting ongoing security challenges facing independent email services. Scope of the Security Incident According to official … Read more

Microsoft’s June 2025 security update cycle has delivered comprehensive patches for 66 vulnerabilities, with particular emphasis on two actively exploited zero-day flaws and a critical Secure Boot bypass vulnerability. This substantial release highlights the evolving complexity of modern cyber threats and reinforces the critical importance of timely security patch deployment across enterprise environments. Critical Vulnerability … Read more