Latest Intelligence
NFC-Powered Android Malware Enables Instant Cash-Outs
Researchers have identified a new Android malware called 'SuperCard X' that exploits the NFC capabilities of victims' phones to facilitate instant theft of credit card funds. This poses a significant threat to users' financial security, as the malware can operate without the victim's awareness.
Gig Worker Platforms at Risk for Data Breaches, Fraud, Account Takeovers
Gig worker platforms are increasingly vulnerable to data breaches and fraud due to their high turnover rates and frequent payouts, making them attractive targets for fraudsters. This situation poses significant risks for both the platforms and their users.
Phishing Kit Darcula Gets Lethal AI Upgrade
The Darcula phishing-as-a-service platform has integrated artificial intelligence capabilities, making it easier for low-skilled hackers to execute phishing attacks. This upgrade raises significant concerns about the increasing accessibility of sophisticated cyberattack tools.
FBI: Cybercrime Losses Rocket to $16.6B in 2024
In 2024, cybercrime losses surged to $16.6 billion, marking a 33% increase from the previous year. Phishing emerged as the most reported cybercrime, while ransomware continued to pose a significant threat to critical infrastructure, highlighting the growing challenges in cybersecurity.
RSA Conference 2025 – Pre-Event Announcements Summary (Part 1)
The RSA Conference 2025 in San Francisco will feature hundreds of companies showcasing their latest cybersecurity products and services. This event is significant as it highlights emerging trends and innovations in the cybersecurity landscape, bringing together industry leaders and stakeholders.
Jericho Security Gets $15 Million for AI-Powered Awareness Training
Jericho Security has successfully raised $15 million in Series A funding to enhance its AI-powered employee cybersecurity training platform. This funding is significant as it aims to improve cybersecurity awareness among employees, which is crucial in combating increasing cyber threats.
Verizon DBIR Flags Major Patch Delays on VPNs, Edge Appliances
AI summary not available. Read original article »
Lazarus Hits 6 South Korean Firms via Cross EX, Innorix Zero-Day and ThreatNeedle Malware
AI summary not available. Read original article »
Navigating Regulatory Shifts & AI Risks
The article discusses how organizations can leverage trends in encryption, AI security, and platform consolidation to transform compliance challenges into competitive advantages. This proactive approach is significant as it helps businesses stay ahead of regulatory changes and mitigate associated risks.
Push Security Raises $30 Million in Series B Funding
AI summary not available. Read original article »
159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure
AI summary not available. Read original article »
Linux io_uring PoC Rootkit Bypasses System Call-Based Threat Detection Tools
AI summary not available. Read original article »
Vestel AC Charger
A vulnerability (CVE-2025-3606) in Vestel's AC Charger could allow unauthorized access to sensitive information, potentially leading to denial of service or integrity loss. Users are urged to update their devices to mitigate risks associated with this exposure.
ALBEDO Telecom Net.Time - PTP/NTP Clock
A vulnerability in ALBEDO Telecom's Net.Time - PTP/NTP clock, identified as CVE-2025-2185, allows for insufficient session expiration, potentially enabling attackers to intercept passwords over unencrypted connections. This poses a significant risk to critical infrastructure sectors worldwide.
Planet Technology Network Products
Multiple critical vulnerabilities have been identified in Planet Technology Network Products, including OS command injection and hard-coded credentials, potentially allowing unauthorized access and manipulation of device data. These vulnerabilities pose significant risks to critical infrastructure systems worldwide.