Kaspersky Uncovers ‘Dante’ Spyware in Global Espionage Campaign
Kaspersky researchers have exposed Operation ForumTroll, a cyber-espionage campaign using “Dante,” a new spyware tool developed by Memento Labs, the rebranded successor of the infamous Hacking Team.
Cybercriminals Target Trucking Firms with Remote Access Tools to Steal Cargo
Cybercriminals are increasingly targeting trucking and logistics companies with remote monitoring and management (RMM) software to infiltrate systems, gain control, and ultimately steal physical freight, according to Proofpoint. The threat group, active since mid-2025, appears to be working with organized crime networks to bid on and divert legitimate shipments—most often food and beverage cargo that is later sold online or shipped overseas.
Researchers Uncover Critical “Tainted Memories” Flaw in OpenAI’s ChatGPT Atlas Browser
Cybersecurity firm LayerX Security has discovered a serious vulnerability in OpenAI’s new ChatGPT Atlas browser that could allow attackers to inject malicious instructions directly into a user’s ChatGPT memory. Dubbed “ChatGPT Tainted Memories,” the flaw enables remote code execution and account compromise without user awareness.
Lazarus-linked actors target Web3 and blockchain with “GhostCall” and “GhostHire”
Security researchers say a North Korea–linked Lazarus sub-group (known as BlueNoroff and by multiple APT aliases) is running twin campaigns — GhostCall and GhostHire — aimed at the Web3 and blockchain ecosystem.
Attackers Exploit Internal OAuth Apps to Maintain Stealthy Cloud Access
Cybercriminals are increasingly abusing internal OAuth-based applications to gain long-term access to enterprise cloud environments, according to new research from Proofpoint. These malicious applications can remain undetected for extended periods, allowing attackers to retain access to high-privileged accounts even after password resets or multi-factor authentication (MFA) enforcement. Because OAuth tokens authorize access without requiring credentials, they offer a covert way for attackers to persist inside compromised systems.
Invoicely Data Leak Exposes Nearly 180,000 Sensitive Business and Personal Records
A massive data exposure linked to the invoicing and billing platform Invoicely left nearly 180,000 private files accessible online without password protection or encryption.
Chinese-Linked Hackers Exploit ArcGIS System as Covert Backdoor for Over a Year
Cybersecurity researchers at ReliaQuest have uncovered a year-long cyber espionage campaign attributed to Flax Typhoon—a Chinese state-sponsored hacking group also known as Ethereal Panda and RedJuliett.
Visa Blocks Over $1 Billion in Global Scam Attempts Through AI-Powered Fraud Detection
Visa has revealed that its Scam Disruption Practice has intercepted more than $1 billion in fraud attempts since launching just a year ago, including $260 million in Europe. Working alongside clients and law enforcement agencies worldwide, the initiative has already dismantled over 25,000 scam merchants, marking a major step in the company’s ongoing fight against digital fraud.
