Author: Staff Writer

Quick Takeaways Malware Distribution via Legitimate Channels: VexTrio Viper has developed multiple malicious apps disguised as useful services (e.g., VPNs, spam blockers) on Apple and Google stores, accumulating millions of downloads while charging users deceptive subscription fees. Operational Structure: The group operates a multinational crime network involving traffic distribution services (TDS) and commercial affiliate networks, with connections across Europe and a history of fraudulent activities since at least 2004. Consumer Deception and Financial Exploitation: Users of these malicious apps face aggressive monetization tactics, including disruptive ads and misleading subscription models that often lead to unexpected recurring charges, making cancellation challenging.…

Liongard, a leading provider of unified IT visibility and automation, has announced the release of ThreatImpactIQ, a robust enhancement to its LiongardIQ platform. This new solution empowers IT and security professionals to move beyond conventional vulnerability scanning by emphasizing business-critical risks, aligning mitigation strategies with regulatory standards, and utilizing continuous threat intelligence for precision-based remediation. “ThreatImpactIQ enables teams to act decisively on the vulnerabilities that truly matter,” stated Michelle Accardi, CEO of Liongard. “By contextualizing vulnerabilities within the framework of business impact, we’re enabling our partners to act more swiftly and intelligently.” Cyber Technology Insights : Rubrik and Sophos to Deliver Microsoft…

Quick Takeaways Record Payouts: Microsoft distributed $17 million in bug bounty rewards to 344 researchers in 59 countries over the past year, marking its highest total since the program’s inception in 2018, with a cumulative payout of $92.5 million. Program Expansion: The company’s bug bounty programs have been updated to cover more products and services, with higher incentives and new categories focusing on emerging security challenges, including Azure, Copilot, and Dynamics 365. Significant Engagement: Over 600 vulnerability submissions were received during the Zero Day Quest challenge, which contributed $1.6 million to the total rewards for the year. Future Challenges: Microsoft…

Quick Takeaways AI-Enhanced Attacks: Government-backed hackers are leveraging artificial intelligence to conduct faster and more effective cyberattacks, including reconnaissance and phishing. Targeted Phishing Campaigns: Hacking groups like Charming Kitten and Reconnaissance Spider are using AI to craft sophisticated phishing messages, showcasing how adversaries adapt to technological changes. Increased Operational Tempo: North Korea’s Famous Chollima group utilizes AI tools to automate processes, sustaining a high rate of intrusions and enhancing their fraud schemes. Security Vulnerabilities in AI: As organizations rapidly implement AI technologies, they inadvertently expand their attack surfaces, making AI tools prime targets for cybercriminals exploiting vulnerabilities. AI in the…

Summary Points Extradition and Charges: Nigerian national Chukwuemeka Victor Amachukwu was extradited from France to the U.S. on August 4, 2025, to face charges of hacking, fraud, and identity theft related to spearphishing attacks targeting U.S. tax preparation businesses. Financial Impact: The fraudulent schemes resulted in over $3 million in theft, with Amachukwu allegedly obtaining approximately $2.5 million from fraudulent tax refunds and $819,000 from SBA loan applications. Fraud Activities: Aside from tax fraud, Amachukwu was involved in a separate scam involving fake investment opportunities, convincing victims to invest in non-existent offerings that directly benefited him. Legal Consequences: He faces…

NVIDIA has patched several critical vulnerabilities in its Triton Inference Server. It is a ubiquitous server for artificial intelligence (AI) models across global enterprises. Researchers are warning that these flaws could allow attackers to take over an enterprise’s AI inference environments. Also, they could steal model data or sensitive information, and even take down enterprise AI workloads, if exploited. There are over 25,000 organizations using this AI-inference-as-a-service platform. These include major cloud and financial services providers (the financial sector’s reliance on AI can’t be understated). The vulnerabilities reveal escalating risk for enterprises building applications across AI-driven workloads. This developing narrative…

Quick Takeaways Targeted Attack: Google confirmed that its Salesforce instance was compromised by threat group UNC6040 in June, part of a broader data theft campaign impacting several major companies. Data Compromised: The attackers accessed basic, publicly available business information, including contact details for small and medium businesses, but Google asserted this data was retrieved during a brief window before access was terminated. Extortion Link: The incident is associated with ShinyHunters and UNC6240, which follows up with extortion attempts demanding bitcoin payments from affected organizations, employing tactics such as voice phishing. Security Assurances: Salesforce stated that its systems remain secure, attributing…

Bugcrowd, a frontrunner in crowdsourced cybersecurity solutions, has unveiled two major product innovations: AI Connect and Asset View. These features are engineered to help security teams not only accelerate vulnerability response but also achieve comprehensive visibility across their attack surface. Breaking Down Bottlenecks in Security Operations With cybersecurity threats evolving rapidly, security teams are under pressure to scale operations using artificial intelligence and automation. However, fragmented systems and disconnected data streams often impede progress. “Security professionals are eager to harness AI, but siloed workflows and inaccessible data make it difficult to act quickly and effectively,” said Dave Gerry, CEO of…

Fast Facts Collaboration is Crucial: Effective cybersecurity relies on strong partnerships between agencies like CISA and private industry, especially amidst rising cyber threats. Trust Issues Persist: U.S. authorities must rebuild trust with industry partners following substantial job cuts and leadership losses during the Trump administration, impacting cybersecurity capabilities. Private Sector Dependence: The federal government relies on the private sector for critical threat information, underscoring the need for operationalizing intelligence to improve defense strategies. Legislative Support Needed: Successful public-private collaboration, highlighted during recent cybersecurity incidents, hinges on the reauthorization of the Cybersecurity Information Sharing Act, which provides protections for shared data.…

Fast Facts Compromised Credentials as Primary Threat: Over 50% of system compromises initiate from compromised credentials, with reports suggesting the issue is exacerbated by the proliferation of infostealers and their logs available on the dark web. Detecting Malicious Activity: Shannon Davis and team at Splunk developed PLoB (post-logon behavior fingerprinting), a method aimed at identifying malicious intruders immediately after user logon, utilizing AI and graph databases to discern suspicious patterns from normal behavior. AI-Driven Anomaly Identification: The researchers enhanced the fingerprinting process to mimic human analysis by prioritizing key signals of malicious activity and generating actionable intelligence through advanced AI…