Cybersecurity

⚡ THN Weekly Recap: Alerts on Zero-Day Exploits, AI Breaches, and Crypto Heists 

⚡ THN Weekly Recap: Alerts on Zero-Day Exploits, AI Breaches, and Crypto Heists 

This week, a 23-year-old Serbian activist found themselves at the crossroads of digital danger when a sneaky zero-day exploit turned their Android device into a target. Meanwhile, Microsoft pulled back the curtain on a scheme where cybercriminals used AI tools for harmful pranks, and a massive trove of live secrets was discovered, reminding us that even the tools we rely on can hide risky

The New Ransomware Groups Shaking Up 2025 

The New Ransomware Groups Shaking Up 2025 

In 2024, global ransomware attacks hit 5,414, an 11% increase from 2023. 

After a slow start, attacks spiked in Q2 and surged in Q4, with 1,827 incidents (33% of the year’s total). Law enforcement actions against major groups like LockBit caused fragmentation, leading to more competition and a rise in smaller gangs. The number of active ransomware groups jumped 40%, from 68 in 2023 to 95

Vo1d Botnet’s Peak Surpasses 1.59M Infected Android TVs, Spanning 226 Countries 

Vo1d Botnet’s Peak Surpasses 1.59M Infected Android TVs, Spanning 226 Countries 

Brazil, South Africa, Indonesia, Argentina, and Thailand have become the targets of a campaign that has infected Android TV devices with a botnet malware dubbed Vo1d.
The improved variant of Vo1d has been found to encompass 800,000 daily active IP addresses, with the botnet scaling a peak of 1,590,299 on January 19, 2025, spanning 226 countries. As of February 25, 2025, India has experienced a

Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language 

Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language 

Firefox browser maker Mozilla on Friday updated its Terms of Use a second time within a week following criticism overbroad language that appeared to give the company the rights to all information uploaded by users.
The revised Terms of Use now states –
You give Mozilla the rights necessary to operate Firefox. This includes processing your data as we describe in the Firefox Privacy Notice. It

Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone 

Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone 

A 23-year-old Serbian youth activist had their Android phone targeted by a zero-day exploit developed by Cellebrite to unlock the device, according to a new report from Amnesty International.
“The Android phone of one student protester was exploited and unlocked by a sophisticated zero-day exploit chain targeting Android USB drivers, developed by Cellebrite,” the international non-governmental

RDP: a Double-Edged Sword for IT Teams – Essential Yet Exploitable 

RDP: a Double-Edged Sword for IT Teams – Essential Yet Exploitable 

Remote Desktop Protocol (RDP) is an amazing technology developed by Microsoft that lets you access and control another computer over a network. It’s like having your office computer with you wherever you go. For businesses, this means IT staff can manage systems remotely, and employees can work from home or anywhere, making RDP a true game-changer in today’s work environment.
But here’s the

5,000 Phishing PDFs on 260 Domains Distribute Lumma Stealer via Fake CAPTCHAs 

5,000 Phishing PDFs on 260 Domains Distribute Lumma Stealer via Fake CAPTCHAs 

Cybersecurity researchers have uncovered a widespread phishing campaign that uses fake CAPTCHA images shared via PDF documents hosted on Webflow’s content delivery network (CDN) to deliver the Lumma stealer malware.
Netskope Threat Labs said it discovered 260 unique domains hosting 5,000 phishing PDF files that redirect victims to malicious websites.
“The attacker uses SEO to trick victims into

Microsoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse Scheme 

Microsoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse Scheme 

Microsoft on Thursday unmasked four of the individuals that it said were behind an Azure Abuse Enterprise scheme that involves leveraging unauthorized access to generative artificial intelligence (GenAI) services in order to produce offensive and harmful content.
The campaign, called LLMjacking, has targeted various AI offerings, including Microsoft’s Azure OpenAI Service. The tech giant is

NEW CUSTOMERS CALL TODAY: 720.221.6804  |  EXISTING CUSTOMERS REQUIRING SUPPORT: 303.617.6442

X