[ad_1] The US Embassy in India on Wednesday said a major cybercrime syndicate has been dismantled through joint efforts by the Central Bureau of Investigation (CBI) and the US Federal Bureau of Investigation (FBI).According to the embassy’s post on X, the operation targeted a network accused of defrauding US nationals of nearly $40 million through...Read More
[ad_1] The U.S. National Security Agency (NSA), the UK’s National Cyber Security Centre (NCSC), and partners from over a dozen countries have linked the Salt Typhoon global hacking campaigns to three China-based technology firms. According to the joint advisories [NSA, NCSC], Sichuan Juxinhe Network Technology Co. Ltd., Beijing Huanyu Tianqiong Information Technology Co., and Sichuan...Read More
[ad_1] A financially motivated threat group operating since 2021 has refined its technical tradecraft, honing its focus on cloud-based systems that allow it to expand ransomware operations beyond the scope of on-premises infrastructure, Microsoft Threat Intelligence said in a report released Wednesday. By leveraging cloud-native capabilities, Storm-0501 has exfiltrated large volumes of data with speed,...Read More
[ad_1] Anthropic’s agentic AI, , has been “weaponized” in high-level cyberattacks, according to a new published by the company. It claims to have successfully disrupted a cybercriminal whose “vibe hacking” extortion scheme targeted at least 17 organizations, including some related to healthcare, emergency services and government. Anthropic says the hacker attempted to extort some victims...Read More
[ad_1] Although Storm-0501 had valid credentials, it didn’t have the necessary second MFA factors, nor was it able to satisfy policy conditions. They could, however, leverage on-premises control to pivot across Active Directory domains and find a non-human synced global admin identity that lacked MFA to reset the user’s on-premises password, sign in to the...Read More
[ad_1] 27 Aug Next-Gen Security Awareness Training Series On The Cybercrime Magazine Podcast Posted at 09:16h in Blogs by Amanada Glassner This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Aug. 27, 2025 – Watch the Video “We’re very excited to be launching a new podcast series where we’re going to be digging...Read More
[ad_1] NetScaler on Tuesday released security updates for vulnerabilities in its application delivery controller and remote-access tools as it warned that hackers were exploiting a critical memory overflow flaw. Exploitation of the memory overflow vulnerability, tracked as CVE-2025-7775, which has a CVSS score of 9.2, could lead to denial of service and remote code execution...Read More
[ad_1] ESET Research discovers PromptLock, a new type of ransomware using GenAI to execute attacks. The malware runs a locally accessible AI language model to generate malicious Lua scripts in real time, which are compatible across Windows, Linux, and macOS. PromptLock uses a freely available language model accessed via an API, meaning the generated malicious...Read More
[ad_1] In the shadowy underbelly of cybersecurity, a chilling evolution is unfolding: ransomware, long a scourge of digital networks, is now being supercharged by artificial intelligence. Cybercriminals are harnessing generative AI tools to craft more sophisticated, evasive strains of malware, marking a pivotal shift in how threats are conceived and deployed. Recent discoveries highlight this...Read More
