Cybersecurity News

A significant shift in cybercriminal tactics has been revealed as the notorious hacking group Hunters International announces its transition away from traditional ransomware operations. According to a recent Group-IB intelligence report, the organization is pivoting towards pure data theft and extortion methods, marking a notable evolution in cyber threat landscapes. Strategic Transformation: The Emergence of … Read more

Cybersecurity researchers at SafeBreach have identified significant security flaws in Google’s Quick Share file-sharing system, revealing that previous security patches implemented in 2023 failed to adequately address critical vulnerabilities. This discovery raises serious concerns about the safety of file transfers through this widely-used platform. Understanding Quick Share and Its Security Implications Quick Share, Google’s P2P … Read more

Cybersecurity researchers at Prodaft have uncovered a sophisticated phishing-as-a-service (PhaaS) platform named Lucid, which has successfully targeted 169 organizations across 88 countries. The platform distinguishes itself by leveraging popular messaging services iMessage and RCS (Rich Communication Services) to distribute malicious content, marking a significant evolution in phishing attack methodologies. Platform Origins and Operational Structure Emerging … Read more

Cybersecurity researchers have uncovered an extensive scanning campaign targeting Palo Alto Networks GlobalProtect authentication portals, with over 24,000 unique IP addresses involved in the operation. The unprecedented scale and sophistication of these reconnaissance activities suggest potential preparation for a large-scale cyber attack against critical network infrastructure. Scale and Nature of the Scanning Campaign According to … Read more

OpenAI has announced a substantial enhancement to its bug bounty program, marking a significant milestone in artificial intelligence security. The company has increased its maximum reward five-fold, from $20,000 to $100,000, demonstrating an aggressive approach to strengthening its security infrastructure and protecting AI systems from emerging threats. Strategic Enhancement of Security Measures The expanded bug … Read more

Cybersecurity researchers at Infoblox have uncovered a sophisticated phishing-as-a-service (PhaaS) platform dubbed “Morphing Meerkat,” which demonstrates unprecedented capabilities in bypassing traditional security measures. This advanced threat infrastructure targets users across more than 114 different services, leveraging cutting-edge techniques to orchestrate highly convincing phishing campaigns. Technical Infrastructure and Operating Mechanisms The platform operates through a centralized … Read more

Security researchers have uncovered a severe vulnerability in Apache Parquet, a widely-adopted columnar storage format, affecting all versions up to 1.15.0. The vulnerability, designated as CVE-2025-30065, has received the highest possible CVSS score of 10.0, indicating an urgent security risk that requires immediate attention from organizations utilizing this data format. Understanding the Technical Impact The … Read more

The development team behind the popular Flipper Zero security testing tool has unveiled plans for their professional-grade device, the Flipper One. This new hardware platform represents a significant evolution in portable security testing equipment, offering enhanced capabilities and professional-focused features that set it apart from its predecessor. Advanced Hardware Architecture and Professional-Grade Display The Flipper … Read more

Security researchers at Tenable have uncovered a significant vulnerability in Google Cloud Run that could potentially allow malicious actors to gain unauthorized access to private containers and inject harmful code. The vulnerability, dubbed ImageRunner, was successfully patched by Google on January 28, 2025, following responsible disclosure protocols. Understanding the ImageRunner Vulnerability The vulnerability stemmed from … Read more

Security researchers at thinkAwesome GmbH have uncovered a severe security vulnerability in the widely deployed Unitree Go1 robotic systems. The investigation revealed an undocumented tunnel service pre-installed on these devices, potentially allowing unauthorized remote access and control of the robots. Technical Analysis of the Security Breach The vulnerability stems from a Raspberry Pi-based control system … Read more