Nation-State Hackers Leverage Google's AI for Advanced Cyber Operations
Over 57 state-sponsored hacking groups are actively exploiting Google's Gemini AI to enhance their cyber capabilities. Iranian, Chinese, Russian and North Korean threat actors are using the technology for tasks ranging from phishing campaigns to malware development.
DeepSeek AI Suffers Major Data Leak Exposing Millions of Chat Records
Security researchers uncovered an unprotected database at Chinese AI company DeepSeek, exposing over 1 million records including user chat prompts and system data. The incident raises concerns about security practices as the rapidly growing company faces increased global scrutiny.
Cyber Espionage Plot Against Climate Activists Unravels as Israeli PI Faces Extradition
U.S. federal investigators are working to expose an alleged hacking operation targeting American environmental advocates, with Israeli PI Amit Forlit at the center of the investigation. The complex case involves allegations of cyber espionage commissioned by energy industry interests to discredit climate activists.
Federal Cybersecurity Brain Drain: Trump's Buyout Plan Sparks Industry Concerns
A new Trump administration initiative offering federal workers buyouts could reshape the cybersecurity landscape by flooding the private sector with government talent. The controversial program, led by Elon Musk's Department of Government Efficiency, raises concerns about national security implications while potentially creating both opportunities and challenges for industry hiring.
Privacy Concerns Mount as DeepSeek AI Stores All User Data on Chinese Servers
Chinese AI company DeepSeek has revealed that all user data, including chat conversations and personal information, is being stored on mainland China servers. Privacy experts warn of serious risks under Chinese data-sharing laws, while users report content censorship on politically sensitive topics.
AT&T Data Breach Targeted Phone Records of Trump Family and Top Politicians
A massive AT&T data breach exposed call and text metadata of prominent political figures, including Trump family members and Vice President Kamala Harris. Hackers planned to monetize the stolen information through a searchable database tool, raising serious national security concerns.
Chinese AI Startup DeepSeek Restricts Sign-ups After Major Cyberattack Amid Rapid Growth
DeepSeek, a rising Chinese AI company, temporarily halts new user registrations following large-scale malicious attacks on its platform. The startup has recently overtaken ChatGPT in App Store downloads and gained attention for its cost-effective R1 model development.
Russian Cyber Espionage Campaign Unmasked: GamaCopy Group Mimics Kremlin-Linked Tactics
A new hacking group dubbed GamaCopy has been discovered impersonating Russian state-backed Gamaredon's tactics to infiltrate Russian-speaking targets. The group deploys UltraVNC remote access tools through sophisticated phishing campaigns, joining other threat actors targeting Russian organizations amid the Ukraine conflict.
Critical jQuery Vulnerability Added to CISA's Known Exploited List Despite 4-Year-Old Patch
CISA has added a medium-severity jQuery vulnerability to its Known Exploited Vulnerabilities catalog due to active exploitation in the wild. The vulnerability, patched in 2020, allows attackers to execute malicious code through cross-site scripting despite existing HTML sanitization.
Critical Security Flaw in Subaru Starlink System Exposed Vehicle Control and Location Data
Security researchers discovered a major vulnerability in Subaru's Starlink system that could allow hackers to track vehicle locations and control door locks through compromised admin accounts. The flaw, which affected vehicles across multiple countries, was swiftly patched after disclosure but highlights growing cybersecurity risks in connected cars.