The U.S. weighs TP-Link router restrictions as multiple federal agencies move to address rising national security concerns tied to the company’s links with China. According to a report from The Washington Post, the Commerce Department, Justice Department, Department of Homeland Security, and Department of Defense have jointly proposed a ban on future sales of TP-Link […]
Microsoft security researchers have identified a new malware strain, dubbed SesameOp, that leverages OpenAI’s Assistants API to establish a covert command-and-control channel. In this latest discovery, Microsoft finds malware using OpenAI to evade detection and maintain persistent access to compromised systems. The attackers exploit the legitimate AI platform to issue instructions and receive stolen data […]
Apple rolled out iOS 26.1 and iPadOS 26.1 this week, delivering critical security patches across more than 50 vulnerabilities that could expose user data or crash core apps. The update spans iPhone 11 and newer, alongside a range of iPad models. Apple fixes iOS flaws by improving memory handling, tightening sandbox enforcement, and restricting app […]
Hackers scan WSUS ports 8530 and 8531 in rising numbers, targeting a critical vulnerability identified as CVE-2025-59287. Cybersecurity researchers and firewall monitoring firms have reported a sharp increase in network reconnaissance aimed at Windows Server Update Services (WSUS) infrastructure. Experts link this activity to potential exploitation efforts as attackers seek to identify unpatched systems. The […]
Microsoft uncovered a new cyber threat dubbed “SesameOp,” a stealthy backdoor that exploits OpenAI’s Assistants API to conduct command-and-control operations. Unlike conventional malware that uses standard communication channels, SesameOp leverages the AI interface to evade detection, prompting concerns about novel abuse vectors. Microsoft uncovers OpenAI abuse in this context as part of a broader analysis […]
Cybersecurity firm PQShield has joined forces with government IT solutions provider Carahsoft to expand access to post-quantum cryptography tools across U.S. government agencies. The collaboration, which sees PQShield Carahsoft bring quantum-ready encryption solutions to the public sector, aims to strengthen defenses against future quantum computing threats. The partnership allows federal, state and local agencies to […]
A coordinated cyberattack campaign has surfaced on YouTube, where a network dubbed the YouTube Ghost Network malwarenaturally has been distributing infostealer malware through thousands of deceptive videos. According to cybersecurity researchers, the operation involves over 3,000 fraudulent videos uploaded across hundreds of compromised or fake YouTube channels. These videos, often disguised as tutorials or free […]
North Korean hackers have been caught on video using artificial intelligence filters to disguise their identities during fake job interviews, according to a report by cybersecurity news outlet Hackread. In a concerning new tactic, the hackers used AI-generated visuals to appear as legitimate job candidates, deceiving potential employers. This represents the latest instance in which […]
Zscaler continues to strengthen its artificial intelligence capabilities as it expands its cybersecurity portfolio. Zscaler buys Splx, adding another AI-focused company to its roster shortly after acquiring Red Canary, a threat management firm that also leverages machine learning. The move reflects Zscaler’s broader strategy to integrate advanced AI tools into its cloud security offerings. The […]
Japanese retailer Askul confirmed a data breach following a cyberattack linked to a Russian hacking group. The company disclosed that the incident compromised contact and inquiry details from users of its e-commerce platforms—Askul, Lohaco and Soloel Arena. In addition, internal servers containing supplier-related information were also affected. Askul Confirms Data Breach as part of an […]
A newly uncovered surveillance tool, Dante spyware, has been tied to Memento Labs, a rebranded version of the controversial Hacking Team. Security researchers revealed that this advanced spyware is part of a broader cyber-espionage toolkit, signaling the group’s continued activity under a new identity. The spyware’s infrastructure and methods suggest links to a threat actor […]
SK Telecom reported a 90% drop in operating profit, citing the financial toll of a recent cyberattack that compromised personal data from roughly 27 million customers. The disclosure, made in April, revealed the extent of the breach and the resulting burden of compensation and recovery efforts. SK Telecom profit plunges as the company grapples with […]