CSO Online

Modern supply-chain attacks and their real-world impact

Supply-chain attacks have evolved considerably in the las two years going from dependency confusion or stolen SSL among ...

WhatsApp RTO challan scam alert: Fake messages with APK file can hack your phone and steal your bank details

A new WhatsApp scam is tricking users with fake RTO challan messages. The message contains an APK file named RTO ...

Zoho Mail nears $100 million in annual revenue; founder Sridhar Vembu credits privacy-first focus for global growth

Zoho Mail is approaching the $100 million annual revenue mark, with over 70% generated internationally. Founder Sridhar Vembu ...

3,000+ YouTube videos deliver malware disguised as free software

YouTube's Ghost Network spreads information-stealing malware through thousands of fake videos offering cracked software, ...

Hate Windows 11? Just make sure you aren't falling for fake download sites hosting upgrade dodgy bypass tools

One of these is Flyoobe, successor to Flyby11 - a legitimate tool that can assist by enabling safe upgrades to Windows 11 on unsupported hardware - bypassing the system requirements to enable a smooth ...
Tobacco ControlOpinion

Regulator’s Trojan horse: the tobacco industry’s advisory council institutionalised within the government in Spain

Objective To analyse the political strategies employed by tobacco industry representatives to exploit their statutory ...

Fake Solidity VSCode extension on Open VSX backdoors developers

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source ...

Why Manufacturing Organizations Are Prime Targets for Hackers: The Rise of Connectivity in the Supply Chain

Manufacturing has become the second most targeted industry globally, experiencing an exponential increase in cyberattacks.
The Hacker News

Malicious VSX Extension "SleepyDuck" Uses Ethereum to Keep Its Command Server Alive

Researchers uncover SleepyDuck RAT hidden in VSX extension, using Ethereum contracts to control infected hosts.

Microsoft: SesameOp malware abuses OpenAI Assistants API in attacks

Microsoft security researchers have discovered a new backdoor malware that uses the OpenAI Assistants API as a covert command-and-control channel.

Beware - ransomware gang is tricking victims with fake Microsoft Teams ads

In fact, the Rhysida group is a famous ransomware operator. It works on a RaaS principle - developing and maintaining the encryptor, while its affiliates breach their targets’ networks and deploy the ...

How to improve Windows PC performance: 5 tips to fix your slow Windows laptop or computer

Experiencing a sluggish computer? Don't fret! Simple maintenance can revive your PC's speed. Keeping Windows and drivers ...