‘Jingle Thief’ Highlights Retail Cyber Threats

Blog

Byadmblake October 27, 2025

A Morocco-based gift card fraud campaign is a sign of what retailers can expect this holiday season.

Blog

APT 41 – Indictments of Nation State Actors Involved in a Global Hacking Campaign

This week, the United States Department of Justice (USDOJ) indicted five Chinese nationals for hacking into the networks of over 100 companies in a global cyber crime campaign. According to the press release, the industries attacked included software development companies, computer hardware manufacturers, telecommunications providers, social media companies, video game companies, non-profit organizations, universities, think…

Read More APT 41 – Indictments of Nation State Actors Involved in a Global Hacking Campaign
Blog

Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros

Cybersecurity researchers have disclosed two security flaws in the Sudo command-line utility for Linux and Unix-like operating systems that could enable local attackers to escalate their privileges to root on susceptible machines. A brief description of the vulnerabilities is below – CVE-2025-32462 (CVSS score: 2.8) – Sudo before 1.9.17p1, when used with a sudoers file…

Read More Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros
Blog

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple environments. The flexible framework has been put to use against Chinese gambling industries and malicious activities targeting Asian government entities and private organizations, according to Trend Micro

Read More China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023
Blog

Serbian Police Hack Protester’s Phone With Cellebrite Exploit Chain

Amnesty International said Serbian police used an exploit chain in tandem with legitimate mobile extraction dongle from vendor Cellebrite in an attack that brings up questions around ethical technology development.

Read More Serbian Police Hack Protester’s Phone With Cellebrite Exploit Chain
Blog

High-Severity Cloud Security Alerts Tripled in 2024

Attackers aren’t just spending more time targeting the cloud — they’re ruthlessly stealing more sensitive data and accessing more critical systems than ever before.

Read More High-Severity Cloud Security Alerts Tripled in 2024
Blog

Hot Button Facebook Ads Tag Middle East, N. Africa Victims

A Libya-linked threat actor has resurfaced, using the same old political phishing tricks to deliver AsyncRAT that have worked for years.

Read More Hot Button Facebook Ads Tag Middle East, N. Africa Victims

Related