CrowdCyber.com yesterday

AI chat app leak exposes 300 million messages tied to 25 million users

Malwarebytes

AI chat app leak exposes 300 million messages tied to 25 million users

A security researcher found an exposed database belonging to the Chat & Ask AI app, once again traced back to a Firebase misconfiguration.

CrowdCyber.com yesterday

[Analysis] Massive Active GitHub Malware Campaign | Hundreds of Malicious Repositories Identified https://www.reddit.com/r/netsec/comments/1r66u2r/analysis_massive_active_github_malware_campaign/

CrowdCyber.com yesterday

Google patches first Chrome zero-day exploited in attacks this year

BleepingComputer

Google patches first Chrome zero-day exploited in attacks this year

Google has released emergency updates to fix a high-severity Chrome vulnerability exploited in zero-day attacks, marking the first such security fl...

CrowdCyber.com yesterday

The Promptware Kill Chain

Schneier on Security

The Promptware Kill Chain - Schneier on Security

Attacks against modern generative artificial intelligence (AI) large language models (LLMs) pose a real threat. Yet discussions around these attack...

CrowdCyber.com yesterday

Fake AI, Real Spies: 260,000 Users Hit by Malicious Browser Extensions

Daily CyberSecurity

Fake AI, Real Spies: 260,000 Users Hit by Malicious Browser Extensions

LayerX exposes 30+ malicious AI extensions spying on 260,000 users. These "privileged proxies" steal Gmail data & page content. Uninstall now.

CrowdCyber.com 2 days ago

The “Windows + R” Trap: ClickFix Scam Tricks Users into Installing StealC Malware

Daily CyberSecurity

The "Windows + R" Trap: ClickFix Scam Tricks Users into Installing StealC Malware

LevelBlue warns of StealC malware using "ClickFix" fake CAPTCHAs. Users are tricked into running fileless malware via PowerShell. Stay alert.

CrowdCyber.com 2 days ago

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

BleepingComputer

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS...

CrowdCyber.com 2 days ago

FBI takes notorious RAMP ransomware forum offline

Hot for Security

FBI takes notorious RAMP ransomware forum offline

The FBI has seized control of RAMP, a notorious cybercrime online forum that bragged to be "the only place ransomware allowed.

CrowdCyber.com 2 days ago

In Bypassing MFA, ZeroDayRAT Is 'Textbook Stalkerware'

Dark Reading

In Bypassing MFA, ZeroDayRAT Is

With access to SIM, location data, and a preview of recent SMSes, attackers have everything they need for account takeover or targeted social engin...

CrowdCyber.com 2 days ago

OysterLoader: Multi-Stage Loader Evolves to Evade Detection and Deliver Ransomware

Daily CyberSecurity

OysterLoader: Multi-Stage Loader Evolves to Evade Detection and Deliver Ransomware

OysterLoader malware uses custom LZMA & steganography to evade tools. Linked to Rhysida ransomware, it hides in fake IT installers.

CrowdCyber.com 2 days ago

Exploited in the Wild: Critical BeyondTrust Flaw (CVSS 9.9) Opens Door to Network Takeover

Daily CyberSecurity

Exploited in the Wild: Critical BeyondTrust Flaw (CVSS 9.9) Opens Door to Network Takeover

Arctic Wolf warns of CVE-2026-1731, a critical BeyondTrust flaw exploited in the wild. Attackers use it to deploy backdoors. Patch self-hosted inst...

CrowdCyber.com 2 days ago

CTM360: Lumma Stealer and Ninja Browser malware campaign abusing Google Groups

BleepingComputer

CTM360: Lumma Stealer and Ninja Browser malware campaign abusing Google Groups

CTM360 reports 4,000+ malicious Google Groups and 3,500+ Google-hosted URLs used to spread the Lumma Stealer infostealing malware and a trojanized ...

CrowdCyber.com 2 days ago

The Human Hack: LummaStealer Returns with Deceptive “ClickFix” Attacks

Daily CyberSecurity

The Human Hack: LummaStealer Returns with Deceptive "ClickFix" Attacks

LummaStealer is back, evading takedowns with "ClickFix" tactics. Bitdefender reveals how fake CAPTCHAs trick users into running malware. St...

CrowdCyber.com 2 days ago

How to find and remove credential-stealing Chrome extensions

Malwarebytes

How to find and remove credential-stealing Chrome extensions

Researchers have uncovered 30 Chrome extensions stealing user data. Here’s how to check your browser and remove any malicious extensions step by ...

CrowdCyber.com 3 days ago

Ivanti EPMM Zero-Day Bugs Spark Exploit Frenzy — Again

Dark Reading

Ivanti EPMM Zero-Day Bugs Spark Exploit Frenzy — Again

It

CrowdCyber.com 3 days ago

Critical Alert: Chrome Zero-Day (CVE-2026-2441) Exploited in the Wild

Daily CyberSecurity

Critical Alert: Chrome Zero-Day (CVE-2026-2441) Exploited in the Wild

Google patches critical zero-day CVE-2026-2441. Attackers are exploiting this CSS use-after-free flaw in the wild. Update to Chrome 145 immediately.

CrowdCyber.com 3 days ago

One threat actor responsible for 83% of recent Ivanti RCE attacks

BleepingComputer

One threat actor responsible for 83% of recent Ivanti RCE attacks

Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two critical vulnerabilities...

CrowdCyber.com 3 days ago

February 2026 Patch Tuesday includes six actively exploited zero-days

Malwarebytes

February 2026 Patch Tuesday includes six actively exploited zero-days

Microsoft’s February Patch Tuesday fixes 59 flaws—including six zero-days already under active attack. How bad are they?

CrowdCyber.com 3 days ago

Inside Job: Abandoned Outlook Add-in “AgreeTo” Steals 4,000 Credentials

Daily CyberSecurity

Inside Job: Abandoned Outlook Add-in "AgreeTo" Steals 4,000 Credentials

Malicious Outlook add-in "AgreeTo" steals 4,000+ credentials. Attackers hijacked the abandoned tool in the official store. Uninstall immedi...

CrowdCyber.com 3 days ago

New OSS secret scanner: Kingfisher (Rust) validates exposed creds + maps permissions https://www.reddit.com/r/netsec/comments/1qyl3yf/new_oss_secret_scanner_kingfisher_rust_validates/