I am not a robot: ClickFix used to deploy StealC and Qilin
The fake human verification process led to infostealer and ransomware infections
Similar Posts
How to Steer AI Adoption: A CISO Guide
Bys sCISOs are finding themselves more involved in AI teams, often leading the cross-functional effort and AI strategy. But there aren’t many resources to guide them on what their role should look like or what they should bring to these meetings. We’ve pulled together a framework for security leaders to help push AI teams and committees…
How to Advance from SOC Manager to CISO?
Bys sMaking the move from managing a security operations center (SOC) to being a chief information security officer (CISO) is a significant career leap. Not only do you need a solid foundation of tech knowledge but also leadership skills and business smarts. This article will guide you through the practical steps and skills you’ll need to…
New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions
Bys sCybersecurity researchers have uncovered two local privilege escalation (LPE) flaws that could be exploited to gain root privileges on machines running major Linux distributions. The vulnerabilities, discovered by Qualys, are listed below – CVE-2025-6018 – LPE from unprivileged to allow_active in SUSE 15’s Pluggable Authentication Modules (PAM) CVE-2025-6019 – LPE from allow_active to root in
Microsoft seizes 338 websites to disrupt rapidly growing ‘RaccoonO365’ phishing service
Bys sGiles Bruce reports: Microsoft has seized 338 phishing websites associated with a cybercrime service that targeted at least 20 U.S. healthcare organizations. Using a court order granted by the U.S. District Court for the Southern District of New York, the tech giant’s Digital Crimes Unit disrupted RaccoonO365, which offers subscription-based phishing kits allowing novices to mimic official……
Discord to start requiring face scan or ID to access adult content
Bys sLiv McMahon reports: Discord will soon require users globally to verify their age with a face scan or by uploading a form of ID if they want to access adult content. […] Users can either upload a photo of their ID to confirm their age or take a video selfie, where AI will be used……
China-Linked APT41 Hackers Target U.S. Trade Officials Amid 2025 Negotiations
Bys sThe House Select Committee on China has formally issued an advisory warning of an “ongoing” series of highly targeted cyber espionage campaigns linked to the People’s Republic of China (PRC) amid contentious U.S.–China trade talks. “These campaigns seek to compromise organizations and individuals involved in U.S.-China trade policy and diplomacy, including U.S. government agencies, U.S….