Android Update Fixes Linux Kernel RCE Flaw
On February 3, 2025, Google released the February Android Security Bulletin, fixing 47 vulnerabilities. One major flaw, CVE-2024-53104, in the Linux kernel’s UVC driver, could let attackers execute remote code [...]
Hackers Leverage AWS and Microsoft Azure for Massive Cyber Attacks
Silent Push coined “infrastructure laundering” to describe cybercriminals exploiting cloud services for illegal activities. They rent IPs from AWS and Azure, then link them to criminal sites via CDNs like [...]
Phishing Attack Hijacks X Accounts to Promote Scams
A new phishing campaign is targeting high-profile X (formerly Twitter) accounts. SentinelLABS found that attackers aim to hijack accounts of U.S. political figures, journalists, X employees, and cryptocurrency groups. Hackers [...]
Cybercriminals Use GitHub to Distribute Lumma Stealer
Trend Micro’s Managed XDR team recently uncovered a malware campaign using GitHub’s release infrastructure to spread Lumma Stealer, SectopRAT, Vidar, and Cobeacon malware. This highlights how attackers are using trusted [...]
DeepSeek’s rise fuels more fraud and phishing attacks
DeepSeek, a fast-growing Chinese AI company, has shaken up the industry and caught cybercriminals' attention. After its AI Assistant app became the top free iOS app in January 2025, surpassing [...]
Get Social