WhatsApp compromise leads to Astaroth deployment
Another campaign targeting WhatsApp users in Brazil spreads like a worm and employs multiple payloads for credential theft, session hijacking, and persistence
Similar Posts
⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More
Bys sLast week’s cyber news in 2025 was not about one big incident. It was about many small cracks opening at the same time. Tools people trust every day behave in unexpected ways. Old flaws resurfaced. New ones were used almost immediately. A common theme ran through it all in 2025. Attackers moved faster than fixes….
BlackSuit ransomware site seized as part of Operation Checkmate
Bys sThe BlackSuit ransomware operation has been disrupted by coordinated international law enforcement. A splash screen appeared on their leak site this week: THIS DOMAIN HAS BEEN SEIZED This site has been seized by U.S. Homeland Security Investigations as part of a coordinated international law enforcement investigation. OPERATION CHECKMATE Numerous agencies were involved in Operation Checkmate,…
6,500 Axis Servers Expose Remoting Protocol, 4,000 in U.S. Vulnerable to Exploits
Bys sCybersecurity researchers have disclosed multiple security flaws in video surveillance products from Axis Communications that, if successfully exploited, could expose them to takeover attacks. “The attack results in pre-authentication remote code execution on Axis Device Manager, a server used to configure and manage fleets of cameras, and the Axis Camera Station, client software used to…
Over 1,000 SOHO Devices Hacked in China-linked LapDogs Cyber Espionage Campaign
Bys sThreat hunters have discovered a network of more than 1,000 compromised small office and home office (SOHO) devices that have been used to facilitate a prolonged cyber espionage infrastructure campaign for China-nexus hacking groups. The Operational Relay Box (ORB) network has been codenamed LapDogs by SecurityScorecard’s STRIKE team. “The LapDogs network has a high concentration…
Researchers Identify PassiveNeuron APT Using Neursite and NeuralExecutor Malware
Bys sGovernment, financial, and industrial organizations located in Asia, Africa, and Latin America are the target of a new campaign dubbed PassiveNeuron, according to findings from Kaspersky. The cyber espionage activity was first flagged by the Russian cybersecurity vendor in November 2024, when it disclosed a set of attacks aimed at government entities in Latin America…
Auchan retailer data breach impacts hundreds of thousands of customers
Bys sBill Toulas reports: French retailer Auchan is informing that some sensitive data associated with loyalty accounts of several hundred thousand of its customers was exposed in a cyberattack. The company is sending data breach notifications to customers affected by the incident. “We are writing to inform you that Auchan has been the victim of a……