TikTok malware scam tricks you with fake activation guides

New TikTok malware campaign tricks users into running PowerShell commands that download Aura Stealer, which steals ...
The Hacker News

Dragon Breath Uses RONINGLOADER to Disable Security Tools and Deploy Gh0st RAT

Gh0st RAT spreads through Dragon Breath and large-scale impersonation campaigns using multi-stage loaders and evasive NSIS installers targeting Chines ...

Kerberoasting in 2025: How to protect your service accounts

Kerberoasting attacks let hackers steal service account passwords and escalate to domain admin, often without triggering ...

New ‘IndonesianFoods’ spammer floods npm with 150,000 packages

An auto-spamming payload published on npm spams the registry by spawning new packages every seven seconds, creating large ...

Police and cyber-security watchdog warn against using non-certified streaming devices

They may contain malware that can compromise users’ home networks and personal information. Read more at straitstimes.com.

Your Free VPN App Might Be Spying on You

In its November fraud and scam advisory, Google is warning users about VPN apps and extensions that appear legitimate but are ...

Server Security Scanner Vulnerability Affects Up To 56M Sites

Unpatched versions of Imunify360 AV expose hosting platforms that serve up to 56 million websites to possible full server ...
The Hacker News

Operation Endgame Dismantles Rhadamanthys, Venom RAT, and Elysium Botnet in Global Crackdown

The activity, which is taking place between November 10 and 13, 2025, marks the latest phase of Operation Endgame, an ongoing ...

'Unremovable Israeli spyware' on your Samsung phone? Here's what the controversy is all about

A recently rekindled controversy alleges that Samsung's preinstalled service, AppCloud, is used as an Israeli spyware.

Crims poison 150K+ npm packages with token-farming malware

Yet another supply chain attack has hit the npm registry in what Amazon describes as "one of the largest package flooding ...
CNA

Singapore police, cybersecurity agency warn of malware in non-certified Android TV boxes

Users of non-certified Android TV boxes may be exposed to malware that can compromise their home networks and personal ...

Apple passkey technology transforms Mac security with biometric authentication, encrypted storage

Discover how Apple's passkeys revolutionize Mac security by replacing vulnerable passwords with biometric authentication and ...