U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud

30/05/2025 0 Comments 0 tags

The U.S. Department of Treasury’s Office of Foreign Assets Control (OFAC) has levied sanctions against a Philippines-based company named Funnull Technology Inc. and its administrator Liu Lizhi for providing infrastructure

ConnectWise Hit by Cyberattack; Nation-State Actor Suspected in Targeted Breach

30/05/2025 0 Comments 0 tags

ConnectWise, the developer of remote access and support software ScreenConnect, has disclosed that it was the victim of a cyber attack that it said was likely perpetrated by a nation-state

Meta Disrupts Influence Ops Targeting Romania, Azerbaijan, and Taiwan with Fake Personas

30/05/2025 0 Comments 0 tags

Meta on Thursday revealed that it disrupted three covert influence operations originating from Iran, China, and Romania during the first quarter of 2025. “We detected and removed these campaigns before

Cybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular Tools

29/05/2025 0 Comments 0 tags

Fake installers for popular artificial intelligence (AI) tools like OpenAI ChatGPT and InVideo AI are being used as lures to propagate various threats, such as the CyberLock and Lucky_Gh0$t ransomware

New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

29/05/2025 0 Comments 0 tags

Cybersecurity researchers have taken the wraps off an unusual cyber attack that leveraged malware with corrupted DOS and PE headers, according to new findings from Fortinet. The DOS (Disk Operating

DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints

29/05/2025 0 Comments 0 tags

The threat actors behind the DragonForce ransomware gained access to an unnamed Managed Service Provider’s (MSP) SimpleHelp remote monitoring and management (RMM) tool, and then leveraged it to exfiltrate data

Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations

29/05/2025 0 Comments 0 tags

Google on Wednesday disclosed that the Chinese state-sponsored threat actor known as APT41 leveraged a malware called TOUGHPROGRESS that uses Google Calendar for command-and-control (C2). The tech giant, which discovered

Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin

29/05/2025 0 Comments 0 tags

Cybersecurity researchers have disclosed a critical unpatched security flaw impacting TI WooCommerce Wishlist plugin for WordPress that could be exploited by unauthenticated attackers to upload arbitrary files. TI WooCommerce Wishlist,

Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack

28/05/2025 0 Comments 0 tags

The Czech Republic on Wednesday formally accused a threat actor associated with the People’s Republic of China (PRC) of targeting its Ministry of Foreign Affairs. In a public statement, the

Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore

28/05/2025 0 Comments 0 tags

An Iranian national has pleaded guilty in the U.S. over his involvement in an international ransomware and extortion scheme involving the Robbinhood ransomware. Sina Gholinejad (aka Sina Ghaaf), 37, and