πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
@cibsecurity
26.2K subscribers
89.4K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
About
Blog
Apps
Platform
Join
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.2K subscribers
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸš€ What to consider before asking an AI chatbot for health advice πŸš€

Using chatbots for medical advice could elicit hallucinations and even expose you to security and privacy risks. Heres whats at stake and how to stay safe.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
Welivesecurity
What to consider before asking an AI chatbot for health advice
Using chatbots for medical advice could elicit hallucinations and even expose you to security and privacy risks. Here’s what’s at stake and how to stay safe.
127 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸš€ BTMOB: A stealthy RAT burrowing deep into Android devices πŸš€

The malware pairs remote access capabilities with readymade campaign tools, lowering the barrier for full device compromise.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
Welivesecurity
BTMOB: A stealthy RAT burrowing deep into Android devices
The BTMOB malware pairs remote access capabilities with ready-made campaign tools, lowering the barrier for full device compromise.
102 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸš€ Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise πŸš€

Watch out for bogus World Cup websites that mimic official ticket and merchandise flows to steal money and personal data.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
Welivesecurity
Foul play: Scams target soccer fans with fake World Cup tickets, merchandise
Watch out for bogus FIFA World Cup-themed websites that mimic official ticket and merchandise flows to steal money and personal data.
105 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Attackers Move Past Typosquatting to Realistic Package Impersonation πŸ“”

Most malicious open source packages now mimic real code rather than rely on typosquatting.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Attackers Move Past Typosquatting to Realistic Package Impersonation
Most malicious open source packages now mimic real code rather than rely on typosquatting
119 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Microsoft Condemns "Uncoordinated" Zero Day Disclosures πŸ“”

Microsoft warned the disclosure of several unpatched vulnerabilities without notice has put customers at unnecessary risk.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Microsoft Condemns
Microsoft warned the disclosure of several unpatched vulnerabilities without notice has put β€œcustomers at unnecessary risk”
221 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” New Threat Actor Jinx-0164 Targets Crypto Developers on macOS πŸ“”

New actor Jinx0164 hit crypto developers with fake recruiter lures and macOS malware.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
New Threat Actor Jinx-0164 Targets Crypto Developers on macOS
New actor Jinx-0164 hit crypto developers with fake recruiter lures and macOS malware
115 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Infosecurity Europe: Cybersecurity Staff Prefer CISOs With Real Attack Response Experience, Study Reveals πŸ“”

ISC2 survey of cybersecurity professionals suggests that staff want their information security leaders to have experienced reacting to a significant cyber incident.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Cybersecurity Staff Prefer CISOs With Real Attack Response Experience
ISC2 survey of cybersecurity professionals suggests that staff want their information security leaders to have experience reacting to a significant cyber incident
103 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” GCHQ Chief Urges Action as AI Reshapes Cyber Threats πŸ“”

GCHQ director urges urgent business cyber action as AI and quantum reshape the threat.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
GCHQ Chief Urges Action as AI Reshapes Cyber Threats
GCHQ director urges urgent business cyber action as AI and quantum reshape the threat
100 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” CrowdStrike, Google Take Down Glassworm Botnet πŸ“”

Operators of the malicious Glassworm botnet have been targeting software developers since at least early 2025.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
CrowdStrike, Google Take Down Glassworm Botnet
Operators of the malicious Glassworm botnet have been targeting software developers since at least early 2025
108 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Infosecurity Europe: Why Burnout in Cybersecurity Demands Risk-Based Response πŸ“”

Cybermindz warns that cybersecurity burnout is a growing risk, urging organizations to move beyond wellness initiatives and adopt a measurable, riskbased approach to workforce stress.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Why Burnout in Cybersecurity Demands Risk-Based Response
Cybermindz warns that cybersecurity burnout is a growing risk, urging organizations to move beyond wellness initiatives and adopt a measurable, risk-based approach to workforce stress
156 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers πŸ“”



πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers
Researchers at Cisco tested several well-known LLMs. They found of them could be tricked into bypassing guardrails, just through conversational prompts
223 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Thousands of Fake FIFA Domains Target World Cup Fans πŸ“”

GroupIB uncovered Ghost Stadium phishing and 4300 fake FIFA World Cup domains targeting fans.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Thousands of Fake FIFA Domains Target World Cup Fans
Group-IB uncovered Ghost Stadium phishing and 4300 fake FIFA World Cup domains targeting fans
136 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” 68% of UK Firms Plan to Increase Cyber Spending as AI Risks Rise πŸ“”

UK firms plan higher cyber spending as AI adoption raises security concerns.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
68% of UK Firms Plan to Increase Cyber Spending as AI Risks Rise
UK firms plan higher cyber spending as AI adoption raises security concerns
154 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” PureLogs Variant Steals Data via Purchase Order Lures πŸ“”

FortiGuard Labs detailed a PureLogs campaign using JavaScript, PowerShell and process hollowing.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
PureLogs Variant Steals Data via Purchase Order Lures
FortiGuard Labs detailed a PureLogs campaign using JavaScript, PowerShell and process hollowing
121 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Chinese Threat Actors Ditch Static Phishing Pages for Live Credential Interception πŸ“”

Almost all organizations impersonated by Chinese phishing platforms are nonChinese entities, suggesting operators deliberately avoid domestic targets.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Chinese Threat Actors Shift to Live Credential Interception
Almost all organizations impersonated by Chinese phishing platforms are non-Chinese entities, suggesting operators deliberately avoid domestic targets
108 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” BTMOB Android RAT Spreads Through No-Code Builder Tooling πŸ“”

BTMOB Android RAT sold as a service with a nocode builder for fast, regional phishing lures.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
BTMOB Android RAT Spreads Through No-Code Builder Tooling
BTMOB Android RAT sold as a service with a no-code builder for fast, regional phishing lures
111 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” India's CERT-In Sets 12-Hour Patch Deadline for Exposed Flaws πŸ“”

CERTIn urges 12hour patching of exposed flaws as AI compresses exploitation timelines.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
India's CERT-In Sets 12-Hour Patch Deadline for Exposed Flaws
CERT-In urges 12-hour patching of exposed flaws as AI compresses exploitation timelines
125 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning Campaign πŸ“”

Iran's Nimbus Manticore pushes AIbuilt MiniFast backdoor via phishing and SEO poisoning.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning
Iran's Nimbus Manticore pushes AI-built MiniFast backdoor via phishing and SEO poisoning
113 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” FBI Warns 'Kali365' Phishing Kit Hijacks Microsoft 365 OAuth Tokens πŸ“”

The Kali365 phishingasaservice platform lowers the barrier of entry for cybercriminals, said the FBI.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
FBI Warns 'Kali365' Phishing Kit Hijacks Microsoft 365 OAuth Tokens
The Kali365 phishing-as-a-service platform lowers the barrier of entry for cybercriminals, said the FBI
120 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ“” Fake Streams, Counterfeit Merch and Other Scams: How Fraudsters Target F1 Fans πŸ“”

From fake F1 streams to counterfeit merch, fraudsters are exploiting fans online and the Bitdefender Cybersecurity Grand Prix Fan Threat Index details how.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
Infosecurity Magazine
Fake Streams, Counterfeit Merch & Scams: How Fraudsters Target F1 Fans
From fake F1 streams to counterfeit merch, fraudsters are exploiting fans online and the Bitdefender Cybersecurity Grand Prix Fan Threat Index details how
124 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
🌊 Security Awareness Training Pricing in 2026: 15+ Vendors Compared, ROI Proven, Hidden Costs Exposed 🌊

We map SAT spend to NIST CSF 2.0, NIS2, and SEC Item 1.05 with audit evidence requirements. Explore the 90day execution plan inside. The post Security Awareness Training Pricing in 2026 15 Vendors Compared, ROI Proven, Hidden Costs Exposed appeared first on UnderDefense.

πŸ“– Read more.

πŸ”— Via "UnderDefense"

----------
πŸ‘οΈ Seen on @cibsecurity
UnderDefense
Security Awareness Training Pricing in 2026: 15+ Vendors Compared, ROI Proven, Hidden Costs Exposed
We map SAT spend to NIST CSF 2.0, NIS2, and SEC Item 1.05 with audit evidence requirements. Explore the 90-day execution plan inside.
150 views