Urgent warning for 1.8 billion Gmail users: ‘Hidden danger’ steals passwords in ways even AI can’t detect, ETCISO https://etimg.etb2bimg.com/thumb/msid-122722537,imgsize-52822,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/urgent-warning-for-1-8-billion-gmail-users-hidden-danger-steals-passwords-in-ways-even-ai-cant-detect.jpg A “hidden danger,” which is stealing passwords, has prompted Google to issue an urgent warning for more than a billion Gmail users. The new type of attack has been flying under the radar, attacking 1.8 billion Gmail users without them even ...

EncryptHub Targets Web3 Developers Using Fake AI Platforms to Deploy Fickle Stealer Malware https://firewall.firm.in/wp-content/uploads/2025/07/web3-dev.jpg Jul 20, 2025Ravie LakshmananAI Security / Infostealers The financially motivated threat actor known as EncryptHub (aka LARVA-208 and Water Gamayun) has been attributed to a new campaign that’s targeting Web3 developers to infect them with information stealer malware. “LARVA-208 has evolved its tactics, using fake AI ...

Barracuda unveils entra ID backup premium to safeguard identity data – ET CISO https://etimg.etb2bimg.com/thumb/msid-122337258,imgsize-4222,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/barracuda-unveils-entra-id-backup-premium-to-safeguard-identity-data.jpg Barracuda Networks, Inc., a leading cybersecurity company providing complete protection against complex threats for all sized businesses, today announced the launch of Barracuda Entra ID Backup Premium – a comprehensive, cost-effective solution to safeguard Microsoft Entra ID environments from accidental and malicious data loss. With fast, ...

Pro-Iranian Hacktivist Group Leaks Personal Records from the 2024 Saudi Games https://firewall.firm.in/wp-content/uploads/2025/06/data-leak.jpg Thousands of personal records allegedly linked to athletes and visitors of the Saudi Games have been published online by a pro-Iranian hacktivist group called Cyber Fattah. Cybersecurity company Resecurity said the breach was announced on Telegram on June 22, 2025, in the form of SQL database dumps, characterizing ...

Gemini forged like achilles: Google shields Gemini, with powerful security Advancements – ET CISO https://etimg.etb2bimg.com/thumb/msid-121965910,imgsize-27876,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/gemini-forged-like-achilles-google-shields-gemini-with-powerful-security-advancements.jpg As AI expands itself into more industries, the need for AI to be forged like a modern-day Achilles becomes increasingly necessary. For, the more its branches extend into various sectors, the more vulnerable it shall become to the ever-evolving minefield of digital threats. Google DeepMind ...

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages https://firewall.firm.in/wp-content/uploads/2025/06/hacking-back-hackers.png Jun 21, 2025Ravie LakshmananCyber Attack / Critical Infrastructure The April 2025 cyber attacks targeting U.K. retailers Marks & Spencer and Co-op have been classified as a “single combined cyber event.” That’s according to an assessment from the Cyber Monitoring Centre (CMC), a U.K.-based independent, non-profit ...

Zoomcar says hacker accessed personal data of 8.4 million users – ET CISO https://etimg.etb2bimg.com/thumb/msid-121899085,imgsize-22952,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/zoomcar-says-hacker-accessed-personal-data-of-8-4-million-users.jpg Zoomcar, a leading Indian car-sharing marketplace, has disclosed that hackers gained unauthorized access to the personal data of at least 8.4 million customers. The breach, detected on June 9, compromised names, phone numbers, and car registration numbers, according to a filing with the U.S. Securities and ...

New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks https://firewall.firm.in/wp-content/uploads/2025/06/Langflow-AI.jpg Jun 17, 2025Ravie LakshmananBotnet / Vulnerability Cybersecurity researchers have called attention to a new campaign that’s actively exploiting a recently disclosed critical security flaw in Langflow to deliver the Flodrix botnet malware. “Attackers use the vulnerability to execute downloader scripts on compromised Langflow servers, which ...

With retail cyberattacks on the rise, customers find orders blocked and shelves empty – ET CISO https://etimg.etb2bimg.com/thumb/msid-121842178,imgsize-215832,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/with-retail-cyberattacks-on-the-rise-customers-find-orders-blocked-and-shelves-empty.jpg Representative image A string of recent cyberattacks and data breaches involving the systems of major retailers have started affecting shoppers. United Natural Foods, a wholesale distributor that supplies Whole Foods and other grocers, said this week that a breach of its systems was ...

Discord Invite Link Hijacking Delivers AsyncRAT and Skuld Stealer Targeting Crypto Wallets https://firewall.firm.in/wp-content/uploads/2025/06/Discord.jpg A new malware campaign is exploiting a weakness in Discord’s invitation system to deliver an information stealer called Skuld and the AsyncRAT remote access trojan. “Attackers hijacked the links through vanity link registration, allowing them to silently redirect users from trusted sources to malicious servers,” Check Point ...