News

thecyberexpress1mon
A Shift From Browsers to Enterprise Targets: 2024 Zero-Day Exploitation Analysis
Google’s Threat Intelligence Group (GTIG) released its annual analysis of zero-day exploitation, detailing how 2024 saw attackers increasingly target enterprise software and infrastructure over ...
thecyberexpress1mon
India’s Answer to ChatGPT? Introducing Xanfi—A Culturally Tuned AI Assistant
In an AI world dominated by global players like ChatGPT and DeepSeek, a new contender has emerged from India—Xanfi, a generative AI-powered chatbot that speaks more than 100 languages, including all ...
thecyberexpress1mon
Trojanized Text Editor Software Used in Targeted Uyghur Spy Campaign
A trusted tool has turned traitor. A new Citizen Lab investigation reveals that UyghurEditPP, a legitimate open-source Uyghur-language text editor, has been weaponized to spy on members of the World ...
thecyberexpress1mon
Microsoft Recall Returns: Security Improves but Issues Remain
Nearly a year after its troubled initial rollout, Microsoft Recall is back. Microsoft announced in an April 25 blog post that it will begin rolling out the Windows Recall feature on Copilot+ PCs, ...
thecyberexpress1mon
Japan Warns of Hacked Trading Accounts and Unauthorized Trades
Japan’s Financial Services Agency (FSA) warned last week of the growing threat of hacked trading accounts that has resulted in nearly US $700 million in unauthorized trades since March. The FSA ...
thecyberexpress1mon
Toward a Safer Digital ASEAN: Building Legal and Law Enforcement Synergy
Southeast Asia is undergoing rapid digital transformation—bringing a surge in cybercrime that threatens national security, public trust, and regional stability. From state-linked ransomware campaigns ...
thecyberexpress1mon
Remote Code Execution & Privilege Escalation: Two New Threats in CISA’s KEV
The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) Catalog, adding two new vulnerabilities that are actively being exploited in ...
thecyberexpress1mon
Global Cybersecurity Agencies Warn of Spyware Targeting Uyghur, Tibetan, and Taiwanese Communities
In a joint advisory, the United Kingdom’s National Cyber Security Centre (NCSC), along with international partners from five countries, has revealed details about two spyware variants — BADBAZAAR and ...
thecyberexpress2mon
AI Turned My Face Into a Cartoon—Hackers Turned It Into a Weapon
What started as an innocent trend—turning selfies into adorable “Studio Ghibli-style AI images”—has now taken a sinister turn. AI-powered tools, once celebrated for artistic creativity, are now being ...
thecyberexpress2mon
DragonForce Claims to Be Taking Over RansomHub Ransomware Infrastructure
The DragonForce ransomware group claims to be taking over the infrastructure of RansomHub, the largest ransomware group in the last year, Cyble threat intelligence researchers reported in an advisory ...
thecyberexpress2mon
CISA Issues Urgent Security Alerts: Critical Vulnerabilities in Schneider Electric, Chrome, and Sitecore
The Cybersecurity and Infrastructure Security Agency (CISA) has released several important security advisories, which address critical vulnerabilities across a range of platforms, including industrial ...
thecyberexpress3mon
Ghost in the Shell: Null-AMSI Bypasses Security to Deploy AsyncRAT
Cyble Research and Intelligence Labs (CRIL) has uncovered a stealthy campaign that uses malicious LNK files disguised as seemingly innocent wallpapers to deliver AsyncRAT—an infamous remote access ...