CSO Online

FlowerStorm phishing gang adopts virtual-machine obfuscation to evade email defenses

Researchers say the campaign uses a browser-based JavaScript VM to hide credential theft and intercept MFA at scale.
The Caledonian-Record

Aquanta Vision Secures Pre-Seed Funding to Advance Real-Time Methane Leak Detection

Aquanta Vision, an emerging leader in methane detection, has secured pre-seed funding to accelerate commercial development of its optical gas imaging (OGI) ...
The Caledonian-Record

Safe Pro and Red Cat to Unveil InFlight Real-Time AI Threat Detection Capabilities to the U.S. ...

Safe Pro Group Inc. (Nasdaq: SPAI) (“Safe Pro” or the “Company”), a developer of artificial intelligence (“AI”)-enabled defense, security, and situational awareness ...
SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...
Security Boulevard

Networks of Browser Extensions Are Spyware in Disguise

Modern browser extensions and ad blockers are legally collecting and reselling user data, including streaming habits and B2B sales intelligence, under the guise of "analytics." This unregulated "legal ...

Hezbollah drone strike videos show evolving tactics against Israel

BBC Verify has examined dozens of videos of fibre-optic drone attacks carried out by the Lebanese armed group.

MSA Safety to acquire Norway fire detection firm for $550 million

MSA Safety, a Cranberry-based safety equipment manufacturer, is acquiring Norway's Autronica Fire and Security for $550 million to expand its detection capabilities.

LinkedIn accused of extensive browser surveillance without users' knowledge

LinkedIn is under scrutiny after an April 4 BrowserGate report alleged the platform used hidden code to monitor software on ...

Chrome: How private is local AI in Google's browser?

Current version of the browser contains a local AI model that will not only download data in the future but also be allowed ...

Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...
Tech Times

LinkedIn Scans Every Chrome User’s Browser Extensions and Ties the Inventory to Their Professional Identity

Every time a professional opens LinkedIn in a Chrome-based browser today, hidden JavaScript silently probes their device for ...
AARP

5 ‘Silent’ Health Threats to Watch Out For as You Age

Many common conditions linked to aging develop without symptoms for years. Learn which five pose the biggest risks and the ...