Author Archives: Deeba Ahmed

iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil

Posted on June 4, 2026 by Deeba Ahmed

iFood confirms a data breach affecting 1.2 million customers in Brazil, while hackers on BreachForums claim the actual theft is much larger. Continue reading iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil→

Five Eyes Warns Chinese Spies Are Using Fake Job Ads to Target Military Staff

Posted on June 4, 2026 by Deeba Ahmed

Five Eyes warns that Chinese spies are using fake job ads on LinkedIn, Indeed, and Upwork to target military staff and steal sensitive data. Continue reading Five Eyes Warns Chinese Spies Are Using Fake Job Ads to Target Military Staff→

Alcasec, “Robin Hood of Spanish Hackers,” Jailed for 31 Months Over Data Theft

Posted on June 3, 2026 by Deeba Ahmed

Alcasec, the “Robin Hood of Spanish Hackers,” is jailed for 31 months after admitting to stealing and selling Spanish citizens’ banking data. Continue reading Alcasec, “Robin Hood of Spanish Hackers,” Jailed for 31 Months Over Data Theft→

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Posted on June 2, 2026 by Deeba Ahmed

Fake ChatGPT desktop app ads pushed password-stealing malware by abusing trusted AI links, hiding from scanners, and tricking users into downloads. Continue reading Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware→

Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts

Posted on June 2, 2026 by Deeba Ahmed

Hackers abused Meta’s AI support bot to hijack major Instagram accounts, bypassing security checks as videos showed the flaw before Meta fixed the issue. Continue reading Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts→

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

Posted on June 1, 2026 by Deeba Ahmed

pretalx XSS flaw lets attackers hijack conference organizer accounts, steal sessions, auto-accept talks, and demote admins. Patched in v2026.1.0. Continue reading Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts→

Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives

Posted on June 1, 2026 by Deeba Ahmed

Hackers are using fake purchase order emails and process hollowing to deploy fileless PureLogs malware to steal Windows users’ browser, crypto, and Discord data. Continue reading Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives→

27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens

Posted on May 31, 2026 by Deeba Ahmed

A malicious Codex UI npm package with 27,000 weekly downloads was caught exfiltrating OpenAI refresh tokens, exposing developers to account takeover risks. Continue reading 27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens→

Fake Anthropic Sites Deliver Fileless Infostealer to Claude Code Users

Posted on May 30, 2026 by Deeba Ahmed

Fake Anthropic websites are being used to target Claude Code users with a fileless infostealer campaign that steals browser credentials and evades detection. Continue reading Fake Anthropic Sites Deliver Fileless Infostealer to Claude Code Users→

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Posted on May 27, 2026 by Deeba Ahmed

Iran’s Nimbus Manticore hackers used trojanized Zoom installers to deploy malware against US firms during a wider IRGC linked cyber campaign. Continue reading Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms→