Google issues red alert as new cyber attack targets Gmail users using AI with ‘indirect prompt injections’

Google warns its 1.8 billion Gmail users about a new cybersecurity threat called indirect prompt injections, where hackers hide malicious commands in emails. Google warns of wave of new threats This threat affects not just people but also businesses and governments, in a post Google explained the danger, “With the rapid adoption of generative AI,…

Read More

Google Confirms Data Breach at Salesforce in ShinyHunters Attack

Google has acknowledged a data breach in one of its Salesforce systems carried out by the hacker group ShinyHunters. The breach, which occurred in early June, compromised one of Google’s internal Salesforce instances, exposing contact information and notes related to small and medium businesses. Back then, Google’s Threat Intelligence Group (GTIG) had already warned about…

Read More

ReVault flaws let hackers bypass Windows login on Dell laptops

The five critical vulnerabilities were named “ReVault” by Talos, and are found in Broadcom’s ControlVault3 firmware, as well as associated Windows application programming interfaces (APIs) on a range of Dell business laptops. On June 13, Dell disclosed these vulnerabilities impacting Dell Pro, Latitude, and Precision laptop models. ControlVault3 is a hardware-based security module found in…

Read More

China-linked hackers target Taiwan’s chip industry with increasing attacks, researchers say

Chinese-linked hackers are targeting the Taiwanese semiconductor industry and investment analysts as part of a string of cyber espionage campaigns, researchers said on Wednesday. While hacking to steal data and information about the industry is not new, there is an increase in sustained hacking campaigns from several China-aligned hacking groups, researchers with cybersecurity firm Proofpoint…

Read More

Microsoft Teams Call Weaponized to Deploy & Execute Matanbuchus Ransomware

A sophisticated cyberattack campaign came to light in July 2025, that weaponizes Microsoft Teams calls to deploy the latest iteration of Matanbuchus ransomware. The attack begins with adversaries impersonating IT helpdesk personnel through external Teams calls, leveraging  tactics related to social engineering  to convince employees to execute malicious scripts. In ongoing support sessions, attackers activate…

Read More

CISA, Security and Intel Agencies Warn of Pro-Iranian Cyber Threats Targeting Critical Infrastructure

Hot on the heels of the U.S. bombing of Iranian nuclear facilities, a joint cybersecurity advisory has warned critical infrastructure organizations of cyber threats stemming from Iranian-backed malicious actors. “Over the past several months, there has been increasing activity from hacktivists and Iranian government-affiliated actors, which is expected to escalate due to recent events,” it stated….

Read More

Forest Blizzard’ vs ‘Fancy Bear’ – cyber companies hope to untangle weird hacker nicknames

Microsoft, CrowdStrike, Palo Alto (PANW.O), opens new tab and Alphabet’s (GOOGL.O), opens new tab Google on Monday said they would create a public glossary of state-sponsored hacking groups and cybercriminals, in a bid to ease confusion over the menagerie of unofficial nicknames for them. Microsoft (MSFT.O), opens new tab and CrowdStrike (CRWD.O), opens new tab said they hoped to potentially bring other industry…

Read More