WhatsApp Banking Worm Delivers Astaroth Trojan
A new WhatsApp banking worm highlights how messaging platforms have become powerful tools for malware distribution. Instead of relying on email phishing, this campaign spreads the Astaroth banking trojan through trusted WhatsApp conversations, abusing automated behavior inside WhatsApp Web sessions. The result is a fast-moving infection chain that blends seamlessly into everyday communication. Because messages originate from known contacts, victims
ChatGPT Health Data: OpenAI Responds to Privacy Concerns
Concerns about ChatGPT health data use have grown as people increasingly discuss medical topics with AI tools. From symptom questions to mental health conversations, users often share deeply personal details. That reality has triggered wider scrutiny over how AI companies handle sensitive information. In response, OpenAI has publicly clarified that ChatGPT does not use health-related user data to train its
KimWolF Android Botnet Targets Networks via Residential Proxies
Android devices increasingly play a role far beyond personal communication, and the KimWolF Android botnet highlights how attackers now weaponize that reality. Instead of relying on traditional external attacks, this campaign abuses residential proxy infrastructure to blend malicious activity into everyday network traffic. By compromising Android devices that appear to belong to ordinary households, attackers gain access to networks that
ClickFix BSOD Attack Pushes Malware via Fake Crashes
Fake system crashes have become a powerful tool for modern malware campaigns. Instead of exploiting software flaws, attackers increasingly rely on fear and urgency to push users into dangerous actions. One of the clearest examples of this shift is the ClickFix BSOD attack, which uses convincing Windows Blue Screen of Death visuals to manipulate victims into executing malicious commands themselves.
Transparent Tribe RAT Evolves With Cross-Platform Support
Transparent Tribe RAT has emerged as a new tool in a long-running cyber-espionage campaign linked to a South Asia–focused threat actor. Security researchers have identified a newly developed remote access trojan capable of targeting both Windows and Linux systems, marking a clear expansion in platform coverage. This development matters because it reflects a deliberate shift toward persistence and stealth. Instead
Glassworm Malware Spreads via Fake Crypto Wallets on macOS
Glassworm malware has emerged as a new threat targeting macOS users who rely on cryptocurrency wallets. The campaign spreads through trojanized wallet applications that appear legitimate but secretly deliver a data-stealing payload. This activity highlights how attackers continue to abuse user trust and familiar software to bypass security controls on macOS systems. Unlike loud ransomware attacks, Glassworm focuses on stealth
European Space Agency Breach Linked to External Servers
A confirmed European Space Agency breach has drawn attention to the growing security risks tied to external digital infrastructure used by major institutions. The incident involved servers that support collaboration with external partners rather than core mission systems, yet the scope of the exposure has raised serious concerns across the cybersecurity community. The case highlights how attackers increasingly target secondary
ChatGPT Thinking Time Arrives on Mobile
ChatGPT thinking time is rolling out on mobile devices, giving users direct control over how deeply the AI reasons before responding. The new toggle allows people to choose between faster replies or more deliberate, analytical answers. This update reflects a broader shift toward user-controlled AI behavior, especially as expectations around transparency and flexibility continue to grow. What ChatGPT Thinking Time
Korean Air Data Breach Exposes Employee Information
A significant security incident has affected one of Asia’s largest airlines after Korean Air data breach disclosures confirmed unauthorized access to employee systems. The breach exposed personal information belonging to thousands of current and former staff members and remained undetected for several months. The incident did not disrupt flights or customer-facing services. However, it revealed serious weaknesses in how internal
Ubisoft Breach Disrupts Rainbow Six Siege Economy
A serious security incident inside Ubisoft’s live-service infrastructure has shaken one of its flagship titles. The Ubisoft breach surfaced after players in Rainbow Six Siege began reporting sudden access to billions of in-game credits, unlocked premium cosmetics, and unusual system messages that should never appear during normal gameplay. The situation quickly escalated from a curiosity into a confirmed security failure,
