Google Mandates Identity Verification for All Android Developers to Combat Malware Threats

Aug 25, 2025 | Podcast

https://android-developers.googleblog.com/2025/08/elevating-android-security.html Google has announced a comprehensive new security initiative called “Developer Verification” that will require all Android app developers to verify their identities before...

Cybercriminals Exploit Japanese Unicode Character to Create Deceptive Booking.com Phishing Campaigns

Aug 22, 2025 | Podcast

https://www.bleepingcomputer.com/news/security/bookingcom-phishing-campaign-uses-sneaky-character-to-trick-you Threat actors have launched a sophisticated phishing campaign targeting Booking.com users by exploiting the Japanese hiragana character “ん” to...

Microsoft Teams Deploys Enhanced Security Features to Block Malicious URLs and Dangerous File Types

Aug 21, 2025 | Podcast

https://www.bleepingcomputer.com/news/security/microsoft-teams-to-protect-against-malicious-urls-dangerous-file-types Microsoft has announced significant security enhancements for Microsoft Teams that will strengthen protection against malware and file-based attacks...

Cybercriminals Launch Sophisticated ‘Ramp and Dump’ Schemes Targeting Brokerage Accounts Through Mobile Phishing

Aug 20, 2025 | Podcast

https://krebsonsecurity.com/2025/08/mobile-phishers-target-brokerage-accounts-in-ramp-and-dump-cashout-scheme Cybercriminal groups specializing in mobile phishing attacks have shifted their focus to targeting customers of major brokerage platforms, implementing a...

New HTTP/2 ‘MadeYouReset’ Attack Bypasses Security Limits to Enable Massive DoS Campaigns

Aug 19, 2025 | Podcast

https://deepness-lab.org/publications/madeyoureset/ Security researchers have discovered a critical new HTTP/2 vulnerability called MadeYouReset that enables attackers to bypass standard server connection limits and launch devastating denial-of-service attacks against...

Security Researchers Demonstrate Devastating Gemini Attacks Through Simple Google Calendar Invites

Aug 18, 2025 | Podcast

Invitation Is All You Need: Invoking Gemini for Workspace Agents with a Simple Google Calendar Invite Security researchers from SafeBreach Labs have unveiled a sophisticated new attack vector called “Targeted Promptware” that enables attackers to remotely...

Over 29,000 Exchange Servers Remain Vulnerable to Critical Flaw Despite Federal Emergency Directive

Aug 15, 2025 | Podcast

https://www.cisa.gov/news-events/directives/ed-25-02-mitigate-microsoft-exchange-vulnerability Security monitoring platform Shadowserver has identified more than 29,000 Microsoft Exchange servers that remain unpatched against a high-severity vulnerability that could...

WinRAR Zero-Day Vulnerability Under Active Exploitation Prompts Emergency Security Update

Aug 14, 2025 | Podcast

https://www.welivesecurity.com/en/eset-research/update-winrar-tools-now-romcom-and-others-exploiting-zero-day-vulnerability WinRAR developers have released an urgent security update to address an actively exploited zero-day vulnerability that allows attackers to...

University of Western Australia Forces All Staff and Students to Reset Passwords After Security Breach

Aug 13, 2025 | Podcast

https://www.abc.net.au/news/2025-08-11/university-of-western-australia-uwa-suffers-major-data-breach/105636074 The University of Western Australia has locked all staff and students out of university systems and mandated password resets following the detection of...

Cybercriminals Deploy 60 Malicious Ruby Gems Downloaded 275,000 Times in Credential Theft Campaign

Aug 12, 2025 | Podcast

https://socket.dev/blog/60-malicious-ruby-gems-used-in-targeted-credential-theft-campaign Security researchers at Socket have uncovered a supply chain attack involving 60 malicious Ruby gems that have been downloaded over 275,000 times since March 2023, primarily...