ICAO Data Breach Exposes Personal Information of Nearly 12,000 Aviation Job Applicants
The International Civil Aviation Organization confirms major data breach affecting recruitment records spanning 2016-2024, with sensitive personal details of almost 12,000 individuals exposed. The incident, claimed by hacker group Natohub, marks ICAO's second significant cybersecurity compromise in recent years.
Security Researcher Successfully Hacks iPhone 15's USB-C Controller Chip
A groundbreaking security research breakthrough reveals vulnerabilities in Apple's custom ACE3 USB-C controller chip for iPhone 15. While current implications are limited, this discovery opens new possibilities for both defensive security research and potential exploitation.
Chrome Store Scammers Game Search Results with Hidden Translation Spam
Developers are exploiting Chrome Web Store's translation feature to promote questionable extensions through deceptive keyword stuffing in foreign language descriptions. Over 900 extensions were found using these tactics to manipulate search rankings, raising security concerns.
Federal Ban on TP-Link Routers Could Disrupt US Home and Business Networks
Federal agencies are investigating Chinese networking giant TP-Link over cybersecurity concerns, potentially affecting 65% of US router users. The proposed ban could force millions to transition to pricier alternatives while raising broader questions about US-China trade relations and network security standards.
China's Submarine Cable-Cutting Patents Raise Global Security Concerns
Chinese institutions have developed specialized devices designed to sever undersea communications cables, according to patent documents. The revelations come amid suspicious incidents of damaged cables worldwide, with Chinese vessels spotted near several incident sites.
Fickle Stealer: New Rust-Based Malware Emerges with Advanced Data Theft Capabilities
A sophisticated new malware called Fickle Stealer has emerged, utilizing multiple distribution methods and advanced evasion techniques to steal sensitive data. Written in Rust, this evolving threat can dynamically adjust its targeting while employing self-protection mechanisms to avoid detection.
Critical Zero-Day Router Botnet 'Gayfemboy' Launches Global DDoS Attacks
A dangerous new botnet dubbed 'Gayfemboy' is actively exploiting zero-day vulnerabilities in industrial routers worldwide, creating a massive DDoS attack network. With over 15,000 daily infected nodes targeting victims across multiple countries, experts urge organizations to implement critical security measures.
Ukrainian Hackers Deal Devastating Blow to Major Russian Internet Provider
Ukrainian hackers successfully disrupted operations at Nodex, a St. Petersburg-based internet provider, claiming to have completely wiped their systems. The cyberattack comes as Russia accelerates efforts to isolate its domestic internet, highlighting the evolving digital warfare between the two nations.
Chinese Hackers Target Japan in Long-Running Cyber Espionage Campaign
Japanese authorities reveal MirrorFace, a China-linked threat actor, has conducted sophisticated cyberattacks against critical sectors since 2019. The campaign deployed advanced malware and evasion techniques to target government agencies, think tanks, and technology sectors, highlighting persistent threats to national security.
Critical Vulnerability in KerioControl Firewalls Puts Thousands of Systems at Risk
A dangerous security flaw in GFI KerioControl firewalls allows attackers to remotely execute code and potentially take control of affected systems. Over 23,800 exposed instances are at risk across multiple countries, with active exploitation attempts already detected from Asia.