1010.cx – Page 18 – cybersecurity / defense / intelligence

Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT Malware

·

AI, cyber security, Cyber Security News, Malware

A Vietnamese threat actor is using AI-authored code to power a phishing campaign that delivers the PureRAT malware and related payloads, leveraging realistic job-themed lures to compromise corporate systems. The campaign, first documented by Trend Micro in December 2025, initially used malicious ZIP and RAR attachments posing as job opportunity documents. More recent activity observed […]

The post Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click Exploit

·

cyber security, Cyber Security News, vulnerability

A critical vulnerability in IDIS Cloud Manager (ICM) Viewer exposes organizations using IDIS IP cameras to one-click remote code execution (RCE), potentially allowing attackers to compromise Windows systems used to monitor video surveillance fully. IDIS, a South Korea–based global video surveillance vendor, offers an end-to-end ecosystem comprising IP cameras, NVRs, video management software, and a […]

The post Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click Exploit appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
From Triage to Threat Hunts: How AI Accelerates SecOps

·

If you work in security operations, the concept of the AI SOC agent is likely familiar. Early narratives promised total autonomy. Vendors seized on the idea of the “Autonomous SOC” and suggested a future where algorithms replaced analysts. That future has not arrived. We have not seen mass layoffs or empty security operations centers. We have instead seen the emergence of a practical reality.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks

·

Threat actors with ties to China have been observed using an updated version of a backdoor called COOLCLIENT in cyber espionage attacks in 2025 to facilitate comprehensive data theft from infected endpoints. The activity has been attributed to Mustang Panda (aka Earth Preta, Fireant, HoneyMyte, Polaris, and Twill Typhoon) with the intrusions primarily directed against government entities located

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device Control

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

A high command injection vulnerability has been discovered in TP-Link’s Archer MR600 v5 router, enabling authenticated attackers to execute arbitrary system commands through the device’s admin interface. The flaw, tracked as CVE-2025-14756, represents a significant security risk for enterprise and home users relying on this widely deployed network equipment. Vulnerability Details Security researchers identified the […]

The post TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device Control appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Best IT Managed Services for Large Enterprises

·

Sponsored, Technology

Learn what defines top-tier enterprise managed IT services, why they matter, and how Mindcore Technologies meets large-scale business demands.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Microsoft Exchange Online to End Support for SMTP AUTH Basic Authentication

·

cyber security, Cyber Security News

Microsoft has announced a revised deprecation timeline for SMTP AUTH Basic Authentication in Exchange Online, giving organizations an extended runway to modernize legacy email workflows. The updated schedule reflects customer feedback and adoption challenges, providing clearer milestones through 2027 before the authentication method is permanently retired. The new deprecation roadmap addresses real-world implementation barriers facing […]

The post Microsoft Exchange Online to End Support for SMTP AUTH Basic Authentication appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Phantom Malware in Android Game Mods Hijacks Devices for Ad Fraud

·

Android, Click Fraud, cybersecurity, Doctor Web, Fraud, gaming, Malware, MODS, Phantom, SCAM, Scams and Fraud, Security, TROJAN

Another day, another Android malware strain. This time, Phantom malware (aka Android.Phantom) is targeting users who install third-party gaming apps from unofficial sources.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Password Reuse in Disguise: An Often-Missed Risky Workaround

·

When security teams discuss credential-related risk, the focus typically falls on threats such as phishing, malware, or ransomware. These attack methods continue to evolve and rightly command attention. However, one of the most persistent and underestimated risks to organizational security remains far more ordinary. Near-identical password reuse continues to slip past security controls, often

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Cybercriminals Exploit Canadians’ Dependence on Digital Services in Widespread Attacks

·

cyber security, Cyber Security News

Canadian citizens are facing a coordinated phishing campaign that leverages government impersonation and brand spoofing to harvest personal and financial data at scale. The campaign is heavily aligned with PayTool, a known phishing-as-a-service ecosystem specializing in traffic violation scams targeting Canadians via SMS. Beyond traffic fines, threat actors are impersonating Canada Revenue Agency (CRA), Air […]

The post Cybercriminals Exploit Canadians’ Dependence on Digital Services in Widespread Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶