• Business
  • Entertainment
  • Health
  • News
  • Sport
  • Tech
  • World
Newsy Today
news of today
Home - Phishing
Tag:

Phishing

World

Police Expose Scam Script Targeting Australians in Cambodia

by Chief Editor June 8, 2026
written by Chief Editor

Australian Federal Police (AFP) and Thai authorities have uncovered a sophisticated script used by organized criminal networks to impersonate police officers and defraud Australians. Recovered from a scam compound in O’Smach, Cambodia, the documents detail how scammers use high-pressure tactics, legal jargon, and encrypted video calls to coerce victims into revealing bank details under the threat of being implicated in money laundering investigations.

How do scammers use scripts to impersonate the AFP?

The script functions as a psychological manual designed to manufacture authority and panic. According to the AFP, scammers identify themselves as federal police officers and claim a victim’s identity has been linked to a “suspect” in a money laundering investigation. The script forces victims to participate in a recorded statement via encrypted video calls, where they are often asked to identify a person presented as a co-conspirator to lend the process a veneer of legitimacy.

To keep the victim isolated, the script explicitly instructs them to keep the investigation secret from “family, friends, coworkers, or anyone else.” Victims are also coerced into providing status updates every four hours, a tactic the AFP says is used to maintain control and reinforce the false sense of urgency. The goal is to drive the target into a state of fear where they comply with requests to move money or share account credentials to “protect” their assets from being blocked or confiscated.

Why are scam compounds in South-East Asia targeting Australians?

South-East Asian countries, including Cambodia, Laos, Thailand, the Philippines, Vietnam, and Myanmar, have emerged as hubs for large-scale, fortified scam operations. According to AFP Acting Superintendent Nuckhley Succar, these locations function as “hives of activity” for serious organized crime. These facilities are often staffed by individuals lured with promises of legitimate work, only to be forced into cybercrime under the threat of violence.

Why are scam compounds in South-East Asia targeting Australians?

Griffith University criminology researcher Hai Luong notes that these operations industrialize fraud by relying on standardized scripts and role specialization. This allows even low-skilled operators to perform complex deception. The effectiveness of these scams is tied to the human tendency to obey authority figures and the fear of legal repercussions. In 2025, Australians lost $2.18 billion to scams, according to the Australian Competition and Consumer Commission (ACCC).

Did you know?
The AFP and international partners launched Operation Firestorm in August 2024. This initiative has led to 560 arrests and the disruption of 15 scam centers across South-East Asia that specifically targeted Australians.

What happens when a scam compound is exposed?

When Thai authorities seized the O’Smach compound during border clashes, they revealed a highly organized, if fraudulent, environment. Reporters and observers found rooms staged to resemble police offices from several nations, including China, Singapore, Brazil, India, Indonesia, and Vietnam. One room contained a mock Australian Federal Police office, complete with official logos and Australian flags.

Cash, cryptocurrency cars and luxury homes seized by the Australian Federal Police | 7NEWS

Following the discovery of personal details within these documents in February 2026, the National Anti-Scam Centre (NASC) contacted 300 Australians identified as potential targets. While there has been a “mass exodus” from some Cambodian scam compounds due to international pressure and the extradition of alleged kingpins, the risk remains high as these networks adapt their tactics to maintain credibility.

Pro Tips: How to stay safe from police impersonation scams

  • Verify independently: If you receive a call from someone claiming to be an officer, hang up and call the agency back using an official number found on their verified website.
  • Recognize the red flags: The AFP has stated clearly: they will never ask you to verify your bank details or demand money over the phone or via a video call.
  • Avoid the “urgency” trap: Scammers use time-sensitive threats, such as potential arrest or account freezing, to prevent you from thinking rationally.
  • Keep it private: Never share your bank account details, screenshots of your banking apps, or passwords with anyone who calls you unexpectedly.

Frequently Asked Questions

Will the AFP ever contact me via an encrypted video call to discuss a crime?

No. The AFP does not use encrypted video calls to solicit bank details or money from the public. Any call requesting this is a scam.

What should I do if someone claims I am under investigation?

End the call immediately. If you are concerned about your legal status, contact the official AFP switchboard or your local police through verified, publicly available contact channels.

Are these scams only targeting Australians?

No. Evidence found in the O’Smach compound shows that these criminal networks target many different nationalities, utilizing staged sets for police forces from countries including India, China, and Singapore.


Have you received a suspicious call claiming to be from a government agency? Share your experience in the comments below or subscribe to our newsletter for the latest updates on cyber security trends.

June 8, 2026 0 comments
0 FacebookTwitterPinterestEmail
Tech

Microsoft Works to Repair Relations with Security Researchers

by Chief Editor June 4, 2026
written by Chief Editor

The New Frontier of Cyber Warfare: From Gas Gauges to Global Espionage

The digital landscape is shifting beneath our feet. As we move through 2026, the lines between traditional cybercrime and state-sponsored espionage are blurring. Recent incidents, ranging from the targeting of critical infrastructure to the weaponization of generative AI, reveal a sophisticated threat environment where no device—or organization—is truly off-limits.

Critical Infrastructure Under Pressure

The recent discovery of attacks on internet-facing gas tank monitoring systems serves as a wake-up call for industrial security. While hackers aren’t yet controlling fuel flow, they are effectively “blinding” operators, creating potential environmental and safety hazards. This trend highlights the vulnerability of the Internet of Things (IoT) in critical sectors.

Critical Infrastructure Under Pressure
Security Researchers Pro Tip
Pro Tip: Ensure all industrial control systems are segmented from public-facing networks. If a device doesn’t need to be reachable via the open internet, it shouldn’t be.

The Weaponization of Generative AI

We are witnessing the rise of groups like “GreyVibe,” which leverage AI tools like ChatGPT and Gemini not just for writing phishing emails, but for the entire attack lifecycle. From generating deceptive imagery to writing custom malware, AI is lowering the barrier to entry for cyber-espionage.

Expect to see more “AI-assisted” threats that are faster, more personalized, and harder to detect than traditional, static phishing campaigns.

The Doxing Epidemic: A Youth-Driven Threat

The recent arrest of a 16-year-old in Spain for leaking sensitive government data highlights a disturbing trend: the rise of “youth-led” threat actors. These individuals often operate with a ideological or notoriety-seeking motive, utilizing existing datasets to cause maximum disruption to state institutions.

Microsoft Threatens Security Researcher | Palo Alto VPN Exploited | Google Insider Trading Case

Protecting Your Digital Perimeter

As cybercriminals continue to spoof official government channels—such as the recent Northern Ireland police impersonation scam—the burden of verification falls on the public. Always remember: if an authority figure demands payment via gift cards or unconventional methods, it is a guaranteed scam.

Did you know? Cybersecurity researchers report that over 10% of new domains registered around major global events, such as the upcoming 2026 World Cup, are malicious. Always verify ticket sites through official FIFA channels.

Frequently Asked Questions (FAQ)

  • How can I protect myself from AI-driven phishing? Treat every unexpected message—even those that look professional—with skepticism. Check the sender’s address for minor inconsistencies and avoid clicking links in urgent emails.
  • Why are gas stations being targeted? Attackers target these systems to disrupt monitoring capabilities. Even without physical sabotage, the ability to “blind” an operator provides leverage for extortion.
  • What should I do if I suspect I’ve been doxed? Immediately secure your accounts with multi-factor authentication (MFA), monitor your credit reports, and report the exposure to the relevant platform or authorities.

Looking Ahead

The “misunderstanding” between Microsoft and the security research community highlights a broader industry tension: the need for rapid vulnerability disclosure versus the risks of premature public exposure. As we look to the future, the companies that prioritize transparent, collaborative relationships with researchers will be the ones best equipped to defend against the next wave of zero-day threats.


Stay ahead of the latest threats. Subscribe to our weekly cybersecurity briefing for deep dives into incident responses and expert analysis. Have you encountered a suspicious phishing attempt lately? Share your story in the comments below.

June 4, 2026 0 comments
0 FacebookTwitterPinterestEmail
World

Global Signal Exchange Launches Enhanced Fraud Detection and Prevention System

by Chief Editor June 3, 2026
written by Chief Editor

Global Signal Exchange Unveils Advanced Tools to Combat Digital Fraud

The Global Signal Exchange (GSE) made waves at the ScamReady ASEAN summit in Kuala Lumpur with the release of version 2.6.0 of its fraud intelligence platform. This update introduces enhanced features like the GSE Compass tool, which now supports multi-country queries and real-time data sharing for accredited members. The platform, developed by Oxford Information Labs, aims to revolutionize how organizations combat scams by pooling threat signals and abuse data across sectors.

Key Features of GSE 2.6.0

The new GSE Compass tool allows analysts to query threat data in natural language, reducing technical barriers to accessing critical insights. For example, a cybersecurity team in Singapore can now quickly analyze phishing trends in Vietnam or track malware activity in the Philippines without specialized coding skills. This democratization of data access is a game-changer for smaller organizations with limited resources.

Google, Meta, and Microsoft are among the major tech companies supporting GSE, while GovTech Singapore became the first government entity to join. Ram Papatla of Google emphasized the platform’s role in enabling rapid responses to scams, stating, “It helps us act faster and protect users more effectively.”

Regional Scam Trends: What the Data Reveals

Oxford Information Labs’ research presented at the summit challenged common assumptions about scam targets. Contrary to beliefs that older adults are the primary victims, the data shows working-age adults are most frequently targeted. Scammers exploit situational pressures like financial stress or grief rather than focusing on fixed demographics.

Regional Scam Trends: What the Data Reveals
Prevention System

ASEAN’s Digital Infrastructure Gaps

Early-stage analysis of ASEAN’s threat patterns highlighted disparities in digital infrastructure. Countries like Singapore rely on global cloud infrastructure, while emerging markets often route attacks through neighboring nations or U.S.-based registrars. Notably, Brunei, Cambodia, Laos, Myanmar, and Timor-Leste showed no large-scale ASNs in GSE data, raising concerns about potential gaps in digital monitoring.

Phishing remains the dominant threat across the region, but national variations exist. Singapore faces cloud-hosted phishing, the Philippines deals with targeted malware, and Vietnam/Indonesia experience a mix of both. These insights underscore the need for region-specific countermeasures.

Cross-Border Collaboration: A New Era in Fraud Prevention

The summit underscored the importance of information sharing between sectors and national borders. Emily Taylor of Oxford Information Labs noted, “ASEAN’s top priority is cross-border data exchange, which is exactly what GSE was built to enable.” This aligns with the Financial Action Task Force’s warning that scam activity now outearns drug trafficking in profitability, demanding urgent global action.

How GSE Is Redefining Cybersecurity Strategies

GSE’s model, exemplified by GovTech Singapore’s participation, allows governments and private entities to act swiftly. Lucien Taylor, CTO of Oxford Information Labs, highlighted the platform’s ability to “design out weaknesses” in the digital ecosystem. For instance, a cybersecurity firm in Thailand could use GSE data to preempt phishing campaigns targeting users in Malaysia, creating a proactive defense network.

No More UPI Scams! RBI Launches New AI Fraud Detection System (DPIP)

Future Implications: What Lies Ahead for Global Fraud Prevention?

The integration of AI-driven tools like GSE Compass signals a shift toward predictive fraud detection. As scam operations grow more complex, platforms that aggregate and analyze real-time data will become essential. Experts predict increased adoption of such systems in emerging markets, where digital infrastructure gaps leave populations vulnerable.

Case Study: Singapore’s Leadership in Shared Intelligence

GovTech Singapore’s early involvement in GSE demonstrates the benefits of shared intelligence. By leveraging the platform’s natural language queries, Singapore’s agencies can quickly identify threats and collaborate with international partners. This model could inspire similar initiatives in other ASEAN nations, fostering a more resilient regional cybersecurity framework.

Frequently Asked Questions

What is the Global Signal Exchange (GSE)?

The GSE is a collaborative platform that enables organizations to share fraud and abuse signals in real time, powered by AI and supported by tech giants like Google and Microsoft.

Frequently Asked Questions
Prevention System Compass

How does GSE Compass work?

GSE Compass allows users to query threat data using natural language, making it accessible to non-technical analysts. For example, a user could ask, “Show phishing trends in Southeast Asia,” and receive instant insights.

Why is cross-border collaboration critical for fraud prevention?

Scam operations often span multiple jurisdictions, requiring real-time data sharing to disrupt criminal networks. Cross-border efforts like GSE help bridge gaps in intelligence and response capabilities.

Did You Know?

The Financial Action Task Force reports that scam activity now generates higher profits for criminals than drug trafficking, emphasizing the need for innovative solutions like GSE.

Pro Tips for Staying Safe Online

  • Enable multi-factor authentication on all accounts.
  • Verify suspicious links or emails through official channels.
  • Stay informed about regional scam trends via platforms like GSE.

Stay Ahead of the Curve

As digital threats evolve, staying informed is your best defense. Explore our related articles on cybersecurity strategies and ASEAN’s digital future to deepen your understanding. Share your thoughts in the comments below or subscribe to our newsletter for regular updates.

June 3, 2026 0 comments
0 FacebookTwitterPinterestEmail
Tech

Barracuda spots 7 million device code phishing attacks

by Chief Editor April 24, 2026
written by Chief Editor

The Industrialization of Identity Theft: The PhaaS Evolution

The landscape of cybercrime is shifting from manual, targeted attacks to a highly scalable business model. The emergence of Phishing-as-a-Service (PhaaS) platforms, such as the EvilTokens kit, allows low-skill criminals to launch sophisticated campaigns that were once the sole domain of advanced threat actors.

This “industrialization” means that high-volume attacks are now easier to execute. For example, security firm Barracuda recently detected over 7 million device code phishing attacks within a single four-week window. By packaging complex exploits into ready-to-use kits sold on platforms like Telegram, the barrier to entry for attackers has vanished.

Did you recognize? Device code phishing is particularly dangerous since it doesn’t rely on fake login pages. Instead, it tricks users into using the legitimate Microsoft login portal, making it nearly invisible to traditional “spot the fake URL” training.

Beyond the Password: The Shift to Token Hijacking

For years, security training focused on preventing credential theft. However, we are seeing a strategic pivot toward hijacking trusted authentication flows. Instead of stealing a password, attackers are now targeting OAuth 2.0 access and refresh tokens.

View this post on Instagram about Microsoft, Phishing
From Instagram — related to Microsoft, Phishing

By abusing the device authorization flow—originally designed for devices with limited interfaces like printers or smart TVs—attackers can gain authorized access to Microsoft 365 and Entra ID environments. Once a victim enters a legitimate code on a real Microsoft page, the attacker receives the token directly.

This method provides three critical advantages for the attacker:

  • Stealth: No cloned websites are used, bypassing many email filters.
  • MFA Bypass: Because the victim authorizes the device themselves, multifactor authentication (MFA) and conditional access checks are often bypassed.
  • Persistence: Refresh tokens can grant attackers access for days or weeks, remaining effective even if the user changes their password.

The Next Frontier: Cross-Platform Expansion

While current surges heavily target Microsoft ecosystems, the trend is moving toward cross-platform versatility. The developers behind the EvilTokens kit have already indicated plans to extend their phishing capabilities to include Gmail and Okta phishing pages.

How fast is a BARRACUDA ATTACK? FREE CODE FRIDAY : DIGITAL CODES Magic Mike 7th son

This suggests a future where “identity-agnostic” phishing kits can pivot between different cloud providers depending on the target’s infrastructure. We are already seeing diverse threat actors—including Russian groups like Storm-237, UTA032, UTA0355, UNK_AcademicFlare, and TA2723, as well as the ShinyHunters data extortion group—leveraging these advanced techniques.

Pro Tip: To mitigate this risk, organizations should implement layered security controls, including advanced email filtering and continuous monitoring of identity protection mechanisms. Tighter controls around device authorization flows are essential to stop token abuse.

Redefining the Human Firewall

The rise of device code phishing renders traditional “look for the padlock” or “check the domain” advice obsolete. Since the final step of the attack happens on a genuine site (such as microsoft.com/devicelogin), the battle has shifted from technical detection to contextual awareness.

Future security training must move beyond identifying “fake” sites and instead teach users to question the reason for a request. If a user is asked to enter a verification code for a device they didn’t intentionally link, it should be treated as a critical red flag, regardless of how legitimate the website appears.

Attackers are increasingly tailoring their lures to specific roles. Recent campaigns have used PDFs, HTML, and DOCX files impersonating financial documents, payroll notices, or SharePoint shares to target employees in HR, finance, logistics, and sales.

Frequently Asked Questions

What is device code phishing?
It’s an attack that abuses the OAuth 2.0 device authorization flow. Attackers trick users into entering a legitimate device code on an official login page, which grants the attacker an access token to the user’s account.

Can MFA stop device code phishing?
Not necessarily. Because the victim is the one performing the authentication on a trusted device, they effectively “approve” the attacker’s session, potentially bypassing MFA and conditional access checks.

What is EvilTokens?
EvilTokens is a Phishing-as-a-Service (PhaaS) kit that automates device code phishing attacks, primarily targeting Microsoft 365 and Entra ID environments.

How do I protect my organization?
Implement layered security, use advanced email filtering, monitor for unusual identity patterns, and train staff to never enter device codes unless they initiated the request themselves.


Are you confident in your current identity protection strategy? Share your thoughts in the comments below or subscribe to our newsletter for the latest updates on evolving cyber threats.

April 24, 2026 0 comments
0 FacebookTwitterPinterestEmail
Tech

AI and Geopolitics in Mexico

by Chief Editor March 5, 2026
written by Chief Editor

The Evolving Cybersecurity Landscape: Mexico at a Crossroads

Cybersecurity is no longer solely a technical concern; it’s a core business strategy. Organizations in Mexico, and globally, face a complex environment shaped by geopolitical instability, the rapid adoption of artificial intelligence, and increasingly distributed technology infrastructures. The question isn’t if an incident will occur, but whether companies are prepared to operate resiliently when they do.

Geopolitics and AI: Amplifying the Risks

Large corporations remain prime targets, with attacks often cascading down to smaller organizations. Disruptions affecting major cloud providers demonstrate how interconnectedness can amplify risk across the entire digital supply chain, impacting even SMEs. Large-scale distributed denial-of-service (DDoS) attacks and ransomware campaigns targeting critical infrastructure represent tangible threats.

Artificial intelligence introduces another layer of complexity. Uncontrolled employee use of AI tools – often termed “Shadow AI” – poses a risk. Data leakage through insecure prompts and the development of misaligned AI models are also concerns. Adversaries are leveraging AI to automate phishing, generate sophisticated malware, and enhance social engineering tactics.

Did you know? In February 2026, a hacker exploited Anthropic’s Claude AI chatbot to steal a massive 150 gigabytes of Mexican government data, including taxpayer and voter records.

Architectural Resilience: A Shift in Approach

Traditional perimeter-based security models are proving inadequate in today’s hybrid and multicloud environments. Security must be embedded by design, incorporating controls from the earliest stages of technology projects. But, many organizations still add security as an afterthought.

Zero Trust Architecture (ZTA) is gaining prominence, operating on the principle of “never trust, always verify.” Limiting lateral movement, encrypting data by default, and prioritizing critical use cases like ransomware containment are essential elements. Cyber Security Mesh Architecture (CSMA) integrates distributed controls under a shared analytics layer, enabling correlation of information from various security tools.

Network Detection and Response (NDR) provides deep network visibility and advanced threat-hunting capabilities, particularly valuable in distributed environments.

Beyond Technology: A Holistic Strategy

The focus should shift from simply deploying more security solutions to achieving architectural coherence, and integration. Business resilience depends on aligning security architecture with business strategy and continuous risk management.

Organizations that embrace principles like security by design, zero trust, mesh integration, and advanced network visibility will be better positioned to navigate the evolving threat landscape. This requires early collaboration between network, cloud, and security operations center (SOC) teams, proof-of-value testing, and phased deployment.

The Role of Standards and Regulation

Internationally recognized standards such as ISO/IEC 42001, ISO/IEC 27001, and ISO/IEC 27701 can aid strengthen data protection and build resilient AI governance frameworks. Mexican courts are beginning to interpret AI-related disputes through existing legal frameworks, highlighting emerging judicial criteria.

Future Trends to Watch

Several trends will shape the future of cybersecurity in Mexico:

  • AI-Powered Security Automation: Increased use of AI and machine learning for threat detection, incident response, and vulnerability management.
  • Supply Chain Security: Greater emphasis on securing the entire digital supply chain, including third-party vendors and partners.
  • Quantum-Resistant Cryptography: Preparation for the potential threat of quantum computing by adopting quantum-resistant cryptographic algorithms.
  • Increased Regulation: Further development of AI-specific regulations and data privacy laws.

FAQ

Q: What is Zero Trust Architecture?
A: A security framework based on the principle of “never trust, always verify,” requiring continuous validation of identity and context.

Q: How does AI impact cybersecurity?
A: AI can be used by both attackers (to automate attacks) and defenders (to enhance threat detection and response).

Q: What is Cyber Security Mesh Architecture?
A: An architecture that integrates distributed controls under a shared analytics layer, improving visibility and correlation of security data.

Pro Tip

Regularly assess your organization’s risk profile and update your security architecture accordingly. Don’t treat cybersecurity as a one-time project; it’s an ongoing process.

Learn More: Explore SGS Mexico’s white paper on Cybersecurity and Data Privacy in the Face of AI for in-depth insights.

What steps is your organization taking to build cybersecurity resilience? Share your thoughts in the comments below!

March 5, 2026 0 comments
0 FacebookTwitterPinterestEmail
Tech

Android Malware Taps Google Gemini at Runtime

by Chief Editor February 20, 2026
written by Chief Editor

Android Malware Enlists AI: A New Era of Mobile Threats

A newly discovered Android malware strain, dubbed “PromptSpy” by security firm Eset, is leveraging Google’s Gemini generative AI model to enhance its persistence mechanisms. This marks the second known instance of AI-driven mobile malware, signaling a concerning trend in the cybersecurity landscape.

How PromptSpy Works: AI-Powered Persistence

Unlike traditional malware that relies on static code and pre-defined instructions, PromptSpy dynamically adapts to its environment. It captures an XML dump of the user’s screen, including text labels and coordinates, and sends this data to Gemini. The AI model then provides JSON-formatted instructions on which interface elements to tap or manipulate. PromptSpy executes these actions locally, repeating the process until it achieves persistence on the device.

This innovative approach allows the malware to overcome the limitations of conventional automation scripts, which often fail due to variations in device layouts and manufacturer customizations. The malware’s ability to remain on a device even after a reboot is particularly noteworthy, as reboots have historically been considered a basic remediation step.

Accessibility Permissions and Removal Prevention

After installation, PromptSpy attempts to obtain AccessibilityService permissions – a common tactic among Android Trojans. Once granted, the malware employs removal prevention techniques, overlaying invisible interface elements over buttons like “stop,” “finish,” “clear,” or “Uninstall” to intercept user interaction and block removal attempts. The only reliable method for removing PromptSpy is to reboot the device into safe mode.

Capabilities Beyond Persistence

PromptSpy’s capabilities extend beyond simply maintaining its foothold on a device. It can also collect device information, upload lists of installed applications, capture lock screen PINs, record unlock patterns as video, report foreground app status, and capture screenshots.

Targeting and Origins

Researchers have traced PromptSpy samples to a website impersonating JPMorgan Chase under the name MorganArg, suggesting a focus on users in Argentina. Chinese-language strings within the malware’s codebase indicate potential development ties to a Chinese-speaking environment, though the activity has not been attributed to a known threat group.

The Rise of AI-Powered Malware: Following PromptLock

PromptSpy follows Eset’s August 2025 discovery of “PromptLock,” the first known GenAI-driven ransomware. PromptLock embedded a locally hosted large language model to dynamically generate encryption routines and malicious code at runtime. These two cases demonstrate a growing trend of threat actors experimenting with AI models to enhance the adaptability and effectiveness of their malware.

Future Trends: What’s Next for AI and Malware?

The emergence of PromptSpy and PromptLock signals a significant shift in the mobile threat landscape. We can expect to notice further development in several key areas:

More Sophisticated Evasion Techniques

AI will likely be used to develop malware that can dynamically evade detection by security tools. By analyzing system behavior and adapting its code in real-time, malware could become significantly harder to identify, and neutralize.

Automated Vulnerability Exploitation

AI could automate the process of identifying and exploiting vulnerabilities in mobile devices and applications. This could lead to a surge in zero-day attacks and a decrease in the time window for security teams to respond.

Personalized Phishing and Social Engineering

Generative AI can create highly personalized phishing messages and social engineering attacks, making them more convincing and difficult to detect. This could lead to a higher success rate for attackers and increased financial losses for victims.

AI-Driven Polymorphism

Malware could apply AI to constantly change its code, creating new variants that bypass signature-based detection systems. This polymorphism would make it challenging for security tools to preserve up with the evolving threat landscape.

FAQ

What is PromptSpy? PromptSpy is an Android malware that uses Google’s Gemini AI to automate its persistence on infected devices.

How does PromptSpy achieve persistence? It uses Gemini to analyze the screen and determine which interface elements to tap, allowing it to remain in the recent app list even after a reboot.

Is PromptSpy widespread? While the technical design is concerning, widespread deployment has not yet been confirmed.

What can I do to protect myself? Rebooting your device into safe mode is the most reliable way to remove PromptSpy. Be cautious when granting AccessibilityService permissions.

What is the significance of PromptSpy? It represents a new era of AI-powered malware, demonstrating how threat actors are leveraging AI to overcome traditional security measures.

Did you know? PromptSpy is the first known Android malware to use generative AI in its execution flow.

Pro Tip: Regularly review the permissions granted to apps on your Android device and revoke any that seem unnecessary or suspicious.

Stay informed about the latest mobile security threats and best practices. Explore more articles on endpoint security and cybercrime to protect yourself and your devices.

February 20, 2026 0 comments
0 FacebookTwitterPinterestEmail
Tech

AI reshapes cyber threats as experts warn on automation

by Chief Editor December 12, 2025
written by Chief Editor

AI‑Powered Threat Hunting: Faster, Smarter, but Still Human‑Centric

Security teams are racing to embed artificial intelligence into their hunt‑for‑baddies pipelines. AI can crunch millions of logs in seconds, spot anomalous patterns, and flag suspicious behavior before a traditional signature‑based system ever notices.

Yet experts warn that full automation is a double‑edged sword. An AI‑driven system that automatically isolates a compromised laptop might sound perfect—until it mistakenly shuts down a SCADA controller feeding a power plant. The cost of an unwarranted outage can dwarf any data breach.

“Technology alone won’t define resilience. The best teams hunt for behavior and intent, not just alerts,” says Dave Spencer, Director of Technical Product Management at Immersive.

Real‑World Example: The 2023 SolarWinds Incident

When the SolarWinds supply‑chain attack was uncovered, analysts discovered that static signatures failed to catch the novel backdoor. It was only after manual investigation of unusual network traffic that the breach was confirmed. Today, AI‑enabled UEBA (User and Entity Behavior Analytics) tools aim to spot such “behavioral drift” automatically, but a human analyst still validates the final decision.

IT/OT Convergence: Legacy Systems Meet Smart Controls

Industrial networks are no longer isolated islands. Information‑technology (IT) and operational‑technology (OT) environments are merging, creating a blended attack surface that mixes office‑level phishing with plant‑floor sabotage.

Older PLCs and legacy SCADA components often lack built‑in security, making them attractive footholds for attackers who can pivot into newer, AI‑enabled control systems.

“Success will depend on disciplined change management, exhaustive testing, and efficient use of maintenance windows,” warns Sam Maesschalck, Lead OT Cyber Security Engineer at Immersive.

Case Study: Ukrainian Power Grid Outage (2022)

Threat actors leveraged compromised VPN credentials to infiltrate the grid’s IT network, then moved laterally into OT devices that still ran outdated firmware. The incident sparked tighter NIST guidelines for IT/OT security and accelerated adoption of standards like ISA/IEC 62443.

Extortion 2.0: Data as Fuel for AI Models

Ransomware gangs are already selling stolen credentials on underground forums. The next wave could see criminals offering clean, labeled datasets to AI startups desperate for training material.

Because large language models thrive on high‑quality data, extortionists may demand higher premiums for “AI‑ready” datasets, turning data theft into a commodity market.

“Threat actors may threaten to sell stolen data to AI companies hungry for new training material,” predicts Ben McCarthy, Lead Cyber Security Engineer at Immersive.

Recent Trend: AI‑Assisted Malware

Proof‑of‑concept tools now let a malicious script call an LLM API to generate polymorphic code on the fly. This capability enables malware that adapts its payload in real time, evading static detection.

AI‑Driven Deception: The Rise of Hyper‑Realistic Social Engineering

Deepfake videos, AI‑generated voice clones, and personalized phishing lures are moving from novelty to everyday weapon.

When an AI can synthesize a CEO’s voice with perfect cadence, the “business email compromise” playbook becomes dramatically more convincing.

“Organizations that rely solely on technology, processes, and policies will fail,” says John Blythe, Director of Cyber Psychology at Immersive.

Did you know?

According to a 2024 Verizon Data Breach Investigations Report, 71 % of breach incidents involved some form of social engineering—and the success rate jumps when AI‑generated content is used.

Building True Resilience: People, Process, and Technology

Resilience isn’t a checkbox; it’s a proven capability. Companies must demonstrate that automated defenses, legacy controls, and human operators can all respond in sync under pressure.

Key steps include:

  • Running continuous red‑team exercises that blend AI‑based attack simulations with manual phishing drills.
  • Maintaining an up‑to‑date asset inventory that spans both IT and OT environments.
  • Adopting zero‑trust principles that enforce granular, context‑aware access across converged networks.

Pro tip

Integrate a “shadow IT” scanner into your SIEM. It will surface unsanctioned devices—like a workstation running an old HMI client—before attackers can abuse them.

FAQ

  • Will AI replace security analysts? No. AI augments analysts by filtering noise, but final judgement still rests with humans.
  • How can legacy OT devices be protected? Use network segmentation, strict access controls, and overlay security gateways that inspect traffic without altering device firmware.
  • Are deepfake attacks common today? They’re rising fast. A 2023 study by the FBI showed a 300 % increase in deepfake‑related fraud cases within a year.
  • What regulations address IT/OT security? Standards like ISA/IEC 62443, NIST 800‑82, and emerging EU CSDR guidelines set baseline controls for converged environments.
  • How should organizations test AI‑driven defenses? Conduct “attack‑in‑the‑loop” drills where AI tools generate simulated threats that analysts must investigate.

Next Steps for Your Organization

Ready to future‑proof your security posture? Start by mapping every asset—old PLCs, cloud workloads, and employee laptops—then layer AI‑enhanced monitoring on top of a solid zero‑trust framework. Finally, run regular, realistic tabletop exercises that blend AI‑generated phishing with hands‑on incident response.

Have thoughts on AI‑driven cyber threats? Contact us, share your experiences in the comments below, and subscribe to our newsletter for the latest insights.

December 12, 2025 0 comments
0 FacebookTwitterPinterestEmail
Business

Cointelegraph Hacked: Fake Airdrop & Website Exploit

by Chief Editor June 26, 2025
written by Chief Editor

The Rising Tide of Crypto Scams: What’s Next in the Fight for Digital Security?

The digital landscape is constantly evolving, and with it, so are the tactics of cybercriminals. Recent incidents, like the compromise of Cointelegraph and CoinMarketCap, highlight a disturbing trend: the exploitation of trusted platforms for malicious purposes. As a seasoned journalist covering the crypto space, I’ve witnessed firsthand how these attacks are evolving, and it’s crucial for users and platforms alike to stay informed and vigilant.

The Evolution of Wallet Phishing: Beyond the Pop-Up

The Cointelegraph incident, where attackers used a malicious pop-up to lure users into connecting their wallets, is just the tip of the iceberg. While this front-end exploit is effective, sophisticated attackers are constantly exploring more stealthy and complex methods. We’re seeing a rise in:

  • Sophisticated Spear-Phishing: Targeted attacks that use personalized emails and messages to trick individuals into revealing their private keys.
  • Supply Chain Attacks: Compromising third-party services or libraries used by crypto platforms to inject malicious code.
  • AI-Powered Scams: Attackers are leveraging AI to create realistic fake websites, social media profiles, and even generate voice clones to impersonate trusted figures.

These tactics demonstrate a move toward more covert and targeted attacks, making it even harder for the average user to identify and avoid scams.

Why Trusted Platforms Are Prime Targets

The attack on Cointelegraph and CoinMarketCap underscores a key vulnerability: the power of trust. These platforms are go-to sources for crypto news and data. Users inherently trust the information and links they find there, making them ideal vectors for phishing attacks. By compromising a trusted website, attackers can bypass user skepticism and increase the likelihood of success.

Did you know? According to a recent report by Chainalysis, crypto scams cost investors over $8 billion in 2022 alone. The numbers emphasize the urgency of the situation.

Emerging Trends: What to Watch For

The future of crypto security will be defined by the ongoing battle between attackers and defenders. Here are some trends I predict will shape the landscape in the coming years:

  • Decentralized Identity Solutions: The rise of self-sovereign identity (SSI) solutions that allow users to control their digital identities and reduce reliance on centralized platforms.
  • Advanced Threat Detection: The adoption of sophisticated AI and machine-learning algorithms to detect and prevent malicious activity in real-time.
  • Increased Regulatory Scrutiny: Governments worldwide are stepping up their efforts to regulate the crypto space, which could lead to stricter security standards and enforcement.
  • Cross-Chain Exploits: With the growth of decentralized finance (DeFi) and the increasing number of blockchains, attackers will likely focus on exploits that can affect multiple chains simultaneously.

Pro Tips for Staying Safe in the Crypto World

Protecting yourself in the crypto space requires a proactive approach. Here are some actionable tips:

  • Be Skeptical: Never trust unsolicited messages or offers. Always verify information through multiple trusted sources.
  • Use Hardware Wallets: Store your crypto in a hardware wallet to protect your private keys from online threats.
  • Enable Two-Factor Authentication (2FA): Protect your accounts with 2FA whenever possible, using authenticator apps or hardware security keys.
  • Stay Informed: Keep up-to-date on the latest scams and security threats through reputable crypto news sources.
  • Verify URLs: Double-check the URL of every website before entering any sensitive information. Look for the secure padlock icon.

For more information about how to keep your crypto safe, see our guide on Crypto Security Tips.

The Role of Platforms: Securing the Ecosystem

Platforms have a crucial role in safeguarding users. This includes implementing robust security measures, conducting regular audits, and educating users about potential threats. Here’s what platforms can do:

  • Enhanced Security Audits: Regular penetration testing and security audits to identify vulnerabilities.
  • User Education: Providing clear, concise security guidance and warnings.
  • Real-Time Threat Monitoring: Implementing systems to detect and respond to malicious activity swiftly.
  • Community Engagement: Encouraging a culture of security awareness within the community.

FAQ: Your Questions Answered

Q: What is a front-end exploit?

A: A front-end exploit involves injecting malicious code into a website’s front-end, usually to steal user data or redirect users to phishing sites.

Q: How can I tell if a crypto website is legitimate?

A: Always check the URL, look for the padlock icon, and verify information from multiple trusted sources.

Q: What should I do if I think I’ve been scammed?

A: Immediately change your passwords, contact your bank, and report the incident to the relevant authorities.

Q: Are hardware wallets completely secure?

A: Hardware wallets significantly enhance security by keeping your private keys offline, but they aren’t foolproof. Always practice safe security habits.

Q: What are some warning signs of a phishing scam?

A: Urgent requests for personal information, unsolicited offers, and misspelled words or grammatical errors are common red flags.

Reader Question: What are some reliable sources for staying informed about the latest crypto security threats?

There is no single perfect source, but staying aware of the latest happenings is a huge win. You should make sure to incorporate sources that will keep you safe. Some include: the blockchain analytics firm Chainalysis, security firms like CertiK, and well-regarded crypto news sites like Coindesk.

If you enjoyed this article, please share your thoughts in the comments below! What are your biggest concerns about crypto security, and what steps do you take to protect yourself? Share your knowledge with other readers and let’s create a safer crypto community!

June 26, 2025 0 comments
0 FacebookTwitterPinterestEmail
Tech

Kunden müssen mit Spam rechnen: Adidas-Datenleck & Luxusmarken betroffen

by Chief Editor June 7, 2025
written by Chief Editor

Adidas Data Breach: What It Means for You and Future Cyber Threats

The recent cyberattack on Adidas, impacting customer service contact information, serves as a stark reminder of the evolving landscape of online security. Understanding the implications and preparing for future threats is crucial for everyone, not just those who have interacted with Adidas’s customer service. Let’s dive in.

The Adidas Incident: A Closer Look

The core issue revolves around unauthorized access to customer data. While Adidas has stated that payment information and passwords weren’t compromised, the exposure of contact details (email addresses, phone numbers) is a significant concern. This makes affected customers vulnerable to various attacks, from phishing to spam campaigns.

Did you know? Cyberattacks are becoming increasingly sophisticated. Criminals often exploit vulnerabilities in third-party services, as seen in the Adidas breach, to gain access to larger datasets.

The attack highlights a critical point: Data breaches don’t just target financial information. Contact details are valuable currency for cybercriminals who can use them for identity theft, fraud, and more. This incident also highlights the importance of vendor risk management – ensuring that the third-party companies businesses work with have robust security measures in place.

Beyond Adidas: A Trend of Breaches

Adidas isn’t alone. Recent high-profile data breaches affecting luxury brands such as Cartier, Victoria’s Secret, Marks & Spencer, and The North Face highlight a concerning trend. These attacks demonstrate that no company is immune, regardless of its size or industry. These breaches are becoming more frequent and increasingly costly for brands and their consumers alike.

Pro Tip: Regularly check your online accounts for suspicious activity and set up two-factor authentication whenever possible. Use strong, unique passwords for each account.

These incidents underscore the need for increased vigilance and better cybersecurity practices across all industries. Companies must invest in stronger security measures and educate their customers about the risks.

The Future of Data Security: What to Expect

The Adidas breach, and the broader pattern of cyberattacks, foreshadows several key trends in data security.

  • Increased Sophistication of Attacks: Cybercriminals are becoming more skilled and are using advanced techniques, including AI-powered phishing and ransomware. Expect more targeted attacks.
  • Focus on Third-Party Risk: Companies will need to take a proactive stance to ensure that all vendors and partners meet stringent security standards. This includes rigorous audits and continuous monitoring.
  • Growing Importance of Data Privacy Regulations: Regulations like GDPR and CCPA are becoming more influential, placing more accountability on companies to protect consumer data. Failure to comply will result in hefty fines.
  • Rise of Cyber Insurance: As the risk of cyberattacks increases, so does the demand for cyber insurance. Companies will increasingly rely on insurance to mitigate financial losses related to data breaches.

How to Protect Yourself: Practical Steps

Being proactive is crucial. Here’s what you can do to minimize your risk after a potential data breach:

  • Monitor Your Accounts: Regularly check your bank statements, credit reports, and online accounts for any suspicious activity.
  • Be Wary of Communications: Be extremely cautious of unsolicited emails, calls, and messages. Verify the sender’s authenticity before clicking on links or providing any information.
  • Update Passwords: Change your passwords regularly, particularly for accounts linked to compromised information. Use strong, unique passwords for each account.
  • Enable Two-Factor Authentication (2FA): Enable 2FA on all your accounts that offer it. This adds an extra layer of security, even if your password is stolen.
  • Use Security Software: Install reputable anti-malware software on your devices.
  • Report Suspicious Activity: If you believe you have been a victim of a cybercrime, report it to the relevant authorities.

FAQ: Your Questions Answered

Q: What should I do if I think my Adidas account was affected?

A: Be extra vigilant about emails and other communications. Change your Adidas password and monitor your other online accounts for any suspicious activity.

Q: How can I tell if an email is a phishing attempt?

A: Look for poor grammar, suspicious links, and requests for personal information. Always verify the sender’s email address and don’t click on links unless you are certain of their legitimacy.

Q: Are my financial details safe?

A: Adidas has stated that payment information was not compromised in this particular breach. However, it’s always wise to review your financial statements regularly as a preventative measure.

Q: What can companies do to improve data security?

A: Implement robust security measures, conduct regular security audits, provide employee training, and proactively monitor for potential threats.

Q: What should I do if I receive a suspicious phone call?

A: Do not provide any personal information over the phone. Hang up and report the call to the authorities. Never trust caller ID, as it can be easily spoofed.

Q: Why is it important to use different passwords for each account?

A: If a cybercriminal gains access to one of your accounts, having different passwords prevents them from accessing your other accounts as well.

Q: What are some reliable password managers?

A: Popular password managers include 1Password, LastPass, and Dashlane. These tools securely store and manage your passwords.

Q: What is ransomware, and how can I protect myself?

A: Ransomware is a type of malware that encrypts your files and demands a ransom for their release. To protect yourself, back up your data regularly, keep your software updated, and be cautious about opening suspicious attachments.

Reader Question: What additional steps do you think companies and individuals should take to combat evolving cyber threats? Share your thoughts in the comments below!

June 7, 2025 0 comments
0 FacebookTwitterPinterestEmail
Tech

e-shareit.com Reviews | check if site is scam or legit

by Chief Editor May 31, 2025
written by Chief Editor

The Future of Scam Recovery: Navigating the Digital Minefield

As online scams become increasingly sophisticated, understanding how to recover lost funds and protect yourself is more critical than ever. The methods used by fraudsters are constantly evolving, but so too are the tools and strategies available to victims. Let’s dive into the potential future trends in scam recovery, exploring what you need to know to stay safe.

Payment Method Matters: The Front Lines of Fraud Fight

The payment method you use significantly impacts your chances of recovering funds. This is a core tenet of scam recovery, and it’s unlikely to change. Platforms like PayPal, debit/credit cards, and even Bitcoin are all battlegrounds where disputes are waged. The future will see even more granular distinctions in how these methods are assessed.

Did you know? In 2023, over $10 billion was lost to online scams in the United States alone, according to the Federal Trade Commission (FTC). That number is expected to rise in the coming years as more people and businesses conduct transactions online.

PayPal’s Position: A Continued Stronghold?

PayPal, with its buyer protection policies, currently offers a relatively strong position for consumers. The ability to file a dispute within 180 days provides a critical window for recovery. However, future trends suggest that even PayPal may adjust.

Expect more AI-driven fraud detection to enhance protection. This could mean faster dispute resolution and more proactive scam identification. Also, PayPal might offer more tiered protection levels based on transaction history and risk assessment.

Pro Tip: Regularly check your PayPal transaction history and report any suspicious activity immediately. The faster you act, the better your chances.

Credit/Debit Card Security: Stricter Protections Ahead

Credit and debit cards also offer strong consumer protections, but this will likely improve further. Expect enhanced verification processes, such as multi-factor authentication, to become the standard. Furthermore, card issuers could deploy AI-powered systems that can identify fraudulent transactions in real-time based on spending patterns and other factors.

Case Study: A recent study by Javelin Strategy & Research revealed that card fraud losses decreased by 15% in 2022 due to improved security measures. This trend is expected to continue.

Related Article: Explore our article on “Top Credit Card Security Features You Need to Know” for more detailed information.

Navigating Bank Transfers: The Challenges Persist

Bank transfers often provide less protection than other payment methods. Recovering funds can be challenging. The future may bring improved verification processes with banks. Some banks are already incorporating AI-powered fraud detection into bank transfers to detect unusual patterns and potential scams.

The Rise of Cryptocurrency Scams: A Wild West

Bitcoin and other cryptocurrencies present a unique challenge. Transactions are often irreversible, making recovery extremely difficult. Future trends suggest a push towards regulation and enhanced security in the crypto space. This might involve stricter KYC (Know Your Customer) policies at exchanges and the development of more secure wallet technologies.

Data Point: According to Chainalysis, in 2023, scams accounted for a significant portion of cryptocurrency-related crime. This underscores the urgent need for better security and regulation.

Google Pay and Emerging Payment Platforms

Google Pay and similar platforms offer some protections, but their effectiveness depends on the underlying payment methods used. As these platforms become more prevalent, expect them to integrate more robust fraud detection and dispute resolution processes. The emphasis will likely be on user education and proactive fraud prevention.

Wire Transfers: High Risk, Limited Recourse

Wire transfers typically offer minimal recourse for scam victims. Recovery is often difficult or impossible. The future might see banks implementing more rigorous verification processes for wire transfers, especially for large sums or transfers to unfamiliar recipients. Public awareness campaigns can continue to be a vital resource for helping consumers avoid this high-risk payment method.

FAQ: Your Burning Scam Recovery Questions Answered

Q: What’s the first step if I suspect a scam?

A: Contact the company or individual you made the payment to, explain the situation, and request a refund.

Q: How long do I have to file a dispute with PayPal?

A: You generally have 180 calendar days from the date of the purchase.

Q: Are Bitcoin transactions ever reversible?

A: In most cases, Bitcoin transactions are irreversible, highlighting the importance of verifying recipients before sending funds.

Q: What can I do if I’m scammed via bank transfer?

A: Contact your bank immediately and report the fraud. They may be able to help, but recovery is often more challenging than with other payment methods.

Q: Where can I report a scam?

A: You can report scams to the Federal Trade Commission (FTC) or the Internet Crime Complaint Center (IC3).

The world of online scams is constantly evolving. By understanding the nuances of each payment method and staying informed about the latest trends, you can significantly increase your chances of protecting your finances and recovering lost funds. Remember to stay vigilant and prioritize your online security.

Ready to learn more? Explore our other articles on identity theft prevention and safe online shopping practices. Share your experiences and tips in the comments below! What has been your biggest challenge in protecting yourself from online scams?

May 31, 2025 0 comments
0 FacebookTwitterPinterestEmail
Newer Posts
Older Posts

Recent Posts

  • Man Opens Fire on Police Near Dresden Supermarket Shouting “Allahu Akbar

    July 15, 2026
  • María Fernanda Cabal Reveals Which Footballers Flirted With Her on Instagram

    July 15, 2026
  • Liepāja Faces Tough Conference League Return Leg in Montenegro

    July 15, 2026
  • U’ for Urgency: Choreographing the Wait

    July 15, 2026
  • 1 Dead, 3 Missing After Boat Sinks Near Alcatraz

    July 15, 2026

Popular Posts

  • 1

    Maya Jama flaunts her taut midriff in a white crop top and denim jeans during holiday as she shares New York pub crawl story

    April 5, 2025
  • 2

    Saar-Unternehmen hoffen auf tiefgreifende Reformen

    March 26, 2025
  • 3

    Marta Daddato: vita e racconti tra YouTube e podcast

    April 7, 2025
  • 4

    Unlocking Success: Why the FPÖ Could Outperform Projections and Transform Austria’s Political Landscape

    April 26, 2025
  • 5

    Mecimapro Apologizes for DAY6 Concert Chaos: Understanding the Controversy

    May 6, 2025

Follow Me

Follow Me
  • Cookie Policy
  • CORRECTIONS POLICY
  • PRIVACY POLICY
  • TERMS OF SERVICE

© 2026 Newsy Today. All rights reserved.
For contact, advertising, copyright, issues email: [email protected]


Back To Top

For contact, advertising, copyright, issues email: [email protected]

Newsy Today
  • Business
  • Entertainment
  • Health
  • News
  • Sport
  • Tech
  • World