Researchers say the lack of a permission model in IDEs like Visual Studio Code lets attackers bypass verification and install rogue extensions.
Posted inCybersecurity News

Researchers say the lack of a permission model in IDEs like Visual Studio Code lets attackers bypass verification and install rogue extensions.

A newly discovered security flaw in integrated development environments (IDEs) like Visual Studio Code allows malicious extensions to bypass verified status checks, enabling attackers to execute arbitrary code on developers’ machines. This vulnerability stems from weaknesses in the extension verification process, where attackers can create rogue extensions that appear verified while containing harmful functionality.
Doppelgängers? Proofpoint researchers identify significant overlaps between threat actors TA829 and UNK_GreenSec.
Posted inCybersecurity News

Doppelgängers? Proofpoint researchers identify significant overlaps between threat actors TA829 and UNK_GreenSec.

Cybersecurity researchers have identified significant tactical overlaps between the threat actors behind the RomCom RAT (tracked as TA829) and a newly observed cluster distributing the TransferLoader malware (tracked as UNK_GreenSec). These groups share infrastructure, delivery methods, and phishing tactics, blurring the lines between cybercrime and state-aligned espionage.
US levies sanctions on Russian bulletproof hosting service, Aeza Group, for its role in hosting ransomware, malware, and infostealers.
Posted inCybersecurity News

US levies sanctions on Russian bulletproof hosting service, Aeza Group, for its role in hosting ransomware, malware, and infostealers.

The U.S. Department of the Treasury has imposed sanctions on Aeza Group, a Russia-based bulletproof hosting provider, for allegedly supporting a wide range of cybercriminal activities, including ransomware attacks, infostealer operations, darknet drug markets, and Russian disinformation campaigns.
AT&T introduces “Wireless Lock” to block SIM swap attacks.
Posted inCybersecurity News

AT&T introduces “Wireless Lock” to block SIM swap attacks.

AT&T has introduced a new security feature called Wireless Account Lock (also referred to as “Wireless Lock” or “Account Lock”) to protect customers from SIM swap attacks—a type of fraud where attackers transfer a victim’s phone number to a SIM card under their control to intercept calls, texts, and two-factor authentication codes. This feature is now available to all AT&T customers, including both individual and business accounts, after a phased rollout that began earlier in the year.
Computer hacker holding a cash money bag
Posted inCybersecurity News

French police bust ring that used SIM-swapping to steal over $1 million from Société Générale bank clients.

French police have arrested a business student interning at Société Générale who is accused of helping a SIM-swapping fraud ring steal over €1 million (approximately $1.15 million) from 50 clients of the bank. The intern, reportedly a Master’s student at a business school, was working at the bank’s headquarters in Paris and is alleged to have abused his position to access and share sensitive customer banking information with a criminal network.
After CVE nearly self-destructs, EU introduces it’s own vulnerability database – EUVD.
Posted inCybersecurity News

After CVE nearly self-destructs, EU introduces it’s own vulnerability database – EUVD.

The European Union Vulnerability Database (EUVD), launched by the EU Agency for Cybersecurity (ENISA) in May 2025, is a major development in the global cybersecurity landscape and is widely viewed as a timely and strategic response to recent funding uncertainties surrounding the U.S.-based MITRE CVE program. Here's what it is and how it came to be.
Major food retailer, Ahold Delhaize, confirms ransomware attack results in data breach affecting more than 2.2 million people.
Posted inCybersecurity News

Major food retailer, Ahold Delhaize, confirms ransomware attack results in data breach affecting more than 2.2 million people.

Ahold Delhaize, one of the world’s largest food retailers and owner of major U.S. grocery brands like Food Lion, Stop & Shop, Giant Food, and Hannaford, has confirmed a significant data breach affecting more than 2.2 million individuals. The breach is linked to a ransomware attack that targeted the company’s U.S. operations in early November 2024 and has been attributed to the INC Ransom ransomware group, which publicly claimed responsibility in April 2025.