Tag: hackers

If you have an email in Roundcube, be careful! They may have illegally accessed your account

The recognized webmail platform Roundcube faces serious security threats, according to researchers and the Cybersecurity and Infrastructure Security Agency (CISA). The vulnerabilities, registered as CVE-2025-49113 and CVE-2025-68461, have been added to CISA’s Known Exploited Vulnerabilities catalog, indicating their severity. The first vulnerability, CVE-2025-49113, is a deserialization issue that has remained unresolved for nearly 10 years and has a severity score of 9.9. Cyber-errors This flaw has caught the attention of attackers, especially due to the extensive use of Roundcube in sectors such as government and in institutions […]

The recognized webmail platform Roundcube faces serious security threats, according to researchers and the Cybersecurity and Infrastructure Security Agency (CISA). The vulnerabilities, registered as CVE-2025-49113 and CVE-2025-68461, have been added to CISA’s Known Exploited Vulnerabilities catalog, indicating their severity. The first vulnerability, CVE-2025-49113, is a deserialization issue that has remained unresolved for nearly 10 years and has a severity score of 9.9.

Cyber-errors

This flaw has caught the attention of attackers, especially due to the extensive use of Roundcube in sectors such as government and higher education institutions. In a report by the Shadowserver organization, it was revealed that approximately 84,000 instances of the software are vulnerable. Ryan Dewhurst, head of proactive threat intelligence at the firm watchTowr, highlighted that the popularity of Roundcube makes it an attractive target for hackers, especially because “webmail services are a goldmine”.

The second vulnerability mentioned, CVE-2025-68461, is related to a cross-site scripting issue and was fixed in December 2025. Roundcube has urged its users to upgrade to versions that include the necessary fixes to mitigate these security risks.

The continuous exposure to these vulnerabilities and the constant focus of hackers, including those linked to governments, create an alarming landscape for Roundcube users. With the increase in cyberattacks, institutions must take proactive measures to secure their email platforms.

If you like the matchmaking system of Arc Raiders, this famous streamer thinks you are very wrong

Three months after the launch of Arc Raiders, the game from Embark Studios has managed to maintain high user numbers, but it faces a growing problem with cheaters that threatens the experience of players, especially those focused on PvP. Although the aggression-based matchmaking system was initially seen as an innovation, it has allowed cheaters to concentrate in limited matches, increasing the perception that the game is plagued with hackers. Cheaters and elite players all together Several renowned streamers, including the influential Ninja, have expressed their frustration with this situation

Three months after the launch of Arc Raiders, the game from Embark Studios has managed to maintain high user numbers, but it faces a growing problem with cheaters that threatens the experience of players, especially those focused on PvP. Although the aggression-based matchmaking system was initially seen as an innovation, it has allowed cheaters to concentrate in limited matches, increasing the perception that the game is plagued by hackers.

Cheaters and elite players all together

Several renowned streamers, including the influential Ninja, have expressed their frustration with this situation. Ninja pointed out that “99% of players are not even remotely close to encountering a fraction of the amount of cheaters that we encounter,” suggesting that the complaints of serious players fall on deaf ears. His testimony reflects a widespread discontent among the game’s competitors, who are forced to deal with cheating in an environment that should be competitive.

The problem of cheaters is not exclusive to Arc Raiders; other popular titles like Escape from Tarkov and CS2 are also facing a wave of hacking that affects their community. Players are looking to participate in sessions with fewer cheaters, but the current matchmaking exacerbates the situation by grouping cheaters in more aggressive ‘lobbies’. This leads to a frustrating experience for users who want to enjoy PvP without the negative impact of hackers.

As the industry advances, the question arises: should developers come together to combat this common threat? There are reports of players willing to pay up to 60 euros a month for cheating software, raising significant concerns about the future of competitive video games. The community seems unanimous in pointing out that coordinated action is needed to address this issue that continues to affect online shooters in general.

Steam DOWNLOAD

An important password management company is suffering a phishing attack that could lead you to lose your account

LastPass users are facing a new and dangerous phishing campaign that attempts to steal their credentials. Cybercriminals are impersonating the popular password management company to trick users into believing they need to create a local backup of their digital vaults, where their passwords are stored. According to a statement released by LastPass, this campaign began on January 19 and has been described as highly convincing. Don’t fall for this phishing case. The fraudulent emails appear to come from illegitimate addresses, such as “support@lastpass[.]server8” and “support@sr22vegas[.]com,” and aim to create a sense of […]

LastPass users are facing a new and dangerous phishing campaign that attempts to steal their credentials. Cybercriminals are impersonating the popular password management company to trick users into believing they need to create a local backup of their digital vaults, where their passwords are stored. According to a statement released by LastPass, this campaign began on January 19 and has been described as highly convincing.

Don’t fall for this phishing case

Fraudulent emails appear to come from illegitimate addresses, such as “support@lastpass[.]server8” and “support@sr22vegas[.]com”, and aim to create a sense of urgency by claiming that backing up is necessary due to scheduled maintenance. LastPass emphasized that it has not asked its customers to back up their accounts within 24 hours, warning about possible manipulation.

Hackers are cunning in including a button that says “Create backup now,” which when clicked takes users to a phishing site designed to steal their credentials, potentially including the master password. This type of deception underscores the importance of being alert to warning signs and practicing good cyber habits.

Experts recommend that users utilize different services to store critical passwords and memorize their master password, avoiding writing it down in an accessible place. Additionally, passkeys offer a more secure alternative, as they are linked to a specific device and are harder to crack than traditional passwords.

In this context, it is crucial to remain calm and not be swayed by urgency when receiving suspicious emails. It is always advisable to carefully inspect the links and the legitimacy of the email addresses to avoid falling for scams that can compromise the security of our personal information.

Avast Free Antivirus DOWNLOAD

Chinese hackers are starting to use AI to take control of your computer

In September 2025, state-sponsored threat actors conducted a sophisticated espionage campaign that involved the use of artificial intelligence (AI) technology developed by Anthropic. This operation, known as GTG-1002, marked a significant milestone as it was the first time AI was employed to execute large-scale cyberattacks with minimal human intervention. AI increasingly reveals its dark side The attackers utilized the ‘agentic’ capabilities of AI to orchestrate automated attacks against approximately 30 global targets, which included major tech companies, financial institutions, and government agencies. It is estimated […]

In September 2025, state-sponsored threat actors from China carried out a sophisticated espionage campaign that involved the use of artificial intelligence (AI) technology developed by Anthropic. This operation, known as GTG-1002, marked a significant milestone as it was the first time AI was used to execute large-scale cyberattacks with minimal human intervention.

AI is increasingly showing its dark side

The attackers used the ‘agentic’ capabilities of AI to orchestrate automated attacks against approximately 30 global targets, which included large tech companies, financial institutions, and government agencies. It is estimated that up to 90% of the tactical operations were carried out independently, highlighting the evolution in the way cyberattacks are conducted.

During the campaign, the software Claude Code, a coding tool from Anthropic, was manipulated to become an “autonomous cyber attack agent.” This allowed attackers to perform tasks such as vulnerability discovery, exploitation testing, and credential collection without the need for constant human operators. Although human intervention was still necessary at critical points, such as authorizing the progression of exploitation, AI tools executed most of the tactical operations.

Despite the apparent effectiveness of these techniques, the research also revealed significant limitations in AI tools, such as the tendency to “hallucinate” or invent data during autonomous operations, which can hinder the effectiveness of such attacks. This campaign underscores how the barriers to carrying out sophisticated cyberattacks have been considerably lowered, allowing less experienced groups to execute large-scale attacks with relative ease.

ChatGPT DOWNLOAD

Hackers have endangered the United Kingdom after attacking a strategic point: water

Since January 2024, five cyberattacks targeting drinking water facilities in the United Kingdom have been recorded, marking a record for any two-year period. This figure, obtained through Freedom of Information requests to the country’s water regulator, the Drinking Water Inspectorate, suggests that the actual number of attack attempts is likely higher, given that the regulator is only required to report those incidents that cause service disruptions. Although these attacks did not directly affect the supply of safe water, they have managed to disrupt critical organizations, highlighting […]

Since January 2024, five cyberattacks targeting drinking water facilities in the United Kingdom have been recorded, marking a record for any two-year period.

This figure, obtained through Freedom of Information requests to the country’s water regulator, the Drinking Water Inspectorate, suggests that the actual number of attack attempts is likely higher, as the regulator is only required to report those incidents that cause service interruptions.

Despite the fact that these attacks did not directly affect the supply of safe water, they have managed to disrupt critical organizations, highlighting the real threat that malicious hackers pose to society.

Fortunately, it does not affect water safety

A particular ransomware attack that gained notoriety demanded over £3 million from Southern Water in exchange for leaked data, highlighting the risk of attacks driven by financial motivations.

The Canadian Cybersecurity Centre has warned about the activity of hacktivists who have altered systems in water, energy, and agriculture facilities. The alteration of these systems could have deadly consequences, and a simultaneous attack on several of them could paralyze daily life in the country.

“No attack aimed at critical infrastructure should be underestimated. These incidents seek to generate media attention, disrupt public services, and potentially endanger human lives,” said Jason Shea, senior network security advisor at Optiv.

This growing concern for cybersecurity poses a challenge in the face of geopolitical instability, which exposes vulnerabilities in critical infrastructure and opens the door to minor attacks that test the country’s preparedness for a larger crisis.

The police have dismantled a group of cybercriminals who have stolen nearly 6 million dollars

Law enforcement forces from several European countries have dismantled an extensive cybercrime operation called SIMCARTEL, which facilitated phishing attacks and other criminal activities through mobile networks. The action, carried out by Europol and the authorities of Austria, Estonia, and Latvia, led to the identification of more than 3,200 cases of fraud, as well as financial losses of approximately 5.3 million dollars in Austria and 490,000 dollars in Latvia. Millions in losses The operation, which took place mainly on October 10 in Latvia, resulted in the arrest of seven individuals and the […]

The law enforcement forces of several European countries have dismantled a large-scale cybercrime operation called SIMCARTEL, which facilitated phishing attacks and other criminal activities through mobile networks. The action, carried out by Europol and the authorities of Austria, Estonia, and Latvia, led to the identification of more than 3,200 cases of fraud, as well as financial losses of approximately 5.3 million dollars in Austria and 490,000 dollars in Latvia.

Millions in losses

The operation, which took place mainly on October 10 in Latvia, resulted in the arrest of seven individuals and the confiscation of 1,200 SIM box devices equipped with 40,000 active SIM cards. These cards were used to carry out a variety of cyber crimes, including credential and financial data theft, investment scams, and false emergencies in order to obtain illicit profits.

Europol described the infrastructure used by these criminals as highly sophisticated, allowing the perpetrators to create fake accounts on social media and communication platforms, which enabled them to hide their true identity and location while committing their crimes. Furthermore, more than 49 million accounts created through this criminal network have been tracked.

The operation also involved multiple raids that resulted in the seizure of hundreds of thousands of additional SIM cards, five servers, and two websites used by the criminal organization. Investigators also confiscated four luxury vehicles and froze over $833,000 in bank and cryptocurrency accounts of the suspects.

The warnings about the growth of these operations are evident, as experts from Unit 221B have identified at least 200 SIM boxes operating in different locations across the United States. This phenomenon poses significant risks to phone users, banks, network operators, and retailers, as SIM farms allow cybercriminals to carry out and sell illicit services through mobile network infrastructure.

Ubisoft is facing a serious hacking problem in its most popular game

Ubisoft has released a new version of its successful game Rainbow Six Siege, known as Siege X, adopting a free-to-play model with the intention of attracting new players. Despite the initial enthusiasm, the title has experienced a notable loss of users in recent weeks, which has raised concerns within the gaming community. In early June, the number of concurrent players on Steam reached 142,000, but since then it has fallen to numbers lower than those before the launch of the new version. A game that is plummeting due to […]

Ubisoft has released a new version of its successful game Rainbow Six Siege, known as Siege X, adopting a free-to-play model with the intention of attracting new players. Despite the initial enthusiasm, the title has experienced a notable loss of users in recent weeks, which has raised concerns within the gaming community. In early June, the number of concurrent players on Steam reached 142,000, but since then it has fallen to numbers lower than those before the launch of the new version.

A game that is plummeting due to cheaters

One of the most prominent problems facing Siege X is the proliferation of hackers that have harmed the gaming experience. Ubisoft has been criticized for not implementing effective measures to combat this situation. In response, the company has promised to impose harsher penalties against cheaters and has stated its intention to target cheat providers that affect the integrity of the game. According to the plan detailed by Ubisoft, permanent bans are expected to be applied to offenders and systems for detecting improper behavior will be improved.

Aside from addressing the issue of cheaters, Ubisoft has admitted that its communication regarding changes and improvements in the game has not been effective. The company has acknowledged that this has contributed to the decline in interest for Siege X. Consequently, a series of adjustments are underway, including the renewal of the competitive mode, revisions in progression and rewards, as well as the incorporation of more content in the game’s seasons. These changes will be carried out under a testing phase to ensure they are well received by the community.

With these actions, Ubisoft hopes to stabilize the gaming experience in Siege X and regain the trust of players, who have been enjoying the title since its launch nearly a decade ago.

Steam DOWNLOAD

If you have cryptocurrency wallets, a way has been discovered in which they could steal your credentials from them

Recently, four malicious packages have been discovered in the npm registry that have the ability to steal cryptocurrency wallet credentials from Ethereum developers. These packages, uploaded by a user calling themselves ‘flashbotts’, masquerade as legitimate cryptographic utilities and the Flashbots infrastructure, while exfiltrating private keys and seed phrases to a Telegram bot controlled by the attackers. A tremendously serious security issue Among the identified packages, ‘ @flashbotts/ethers-provider-bundle’ stands out, designed to hide malicious operations behind seemingly innocuous functions. This package incorporates functionality that redirects unsigned transactions to a […]

Recently, four malicious packages have been discovered in the npm registry that have the ability to steal cryptocurrency wallet credentials from Ethereum developers. These packages, uploaded by a user calling themselves ‘flashbotts’, impersonate legitimate cryptocurrency utilities and the Flashbots infrastructure, while exfiltrating private keys and seed phrases to a Telegram bot controlled by the attackers.

A tremendously serious security problem

Among the identified packages, ‘@flashbotts/ethers-provider-bundle’ stands out, designed to hide malicious operations behind seemingly innocuous functions. This package incorporates functionality that redirects unsigned transactions to a wallet controlled by the attacker and also captures metadata from pre-signed transactions. Even more alarming, this type of deceptive handling could allow criminals to take full control of the victims’ accounts.

The attacks are designed to exploit the trust placed in Flashbots, an entity widely recognized for its role in mitigating the adverse effects of Maximal Extractable Value (MEV) on the Ethereum network. This context of trust facilitates the inadvertent adoption of these malicious packages by developers seeking legitimate tools for their projects.

Investigations indicate that malicious packages not only operate under the guise of seemingly benign functions, but can also be activated in the code of projects without the knowledge of their developers. The inclusion of comments in Vietnamese in the code suggests that the attackers may be Vietnamese speakers.

According to experts, the existence of these malicious packages turns Web3 development into a direct conduit to bots controlled by criminals, which poses a considerable risk to the security of cryptocurrency investments. The appropriation of private keys in this environment can lead to irreversible theft of funds, raising serious concerns for the Ethereum developer and user community.

Avast Free Antivirus DOWNLOAD

The owner of Burger King and Popeyes suffers a cyberattack that describes its security practices as terrible

Restaurant Brands International (RBI), owner of well-known chains like Burger King, Popeyes, and Tim Hortons, has been the target of a cyber attack that revealed serious vulnerabilities in its IT security. Two hackers, known as BobDaHacker and BobTheShoplifter, published a blog detailing their findings, highlighting their ability to access all RBI locations and listen to conversations in the drive-thrus. In the post, which was online briefly on September 6, the hackers expressed their surprise at what they called “terrible security practices.” Cybersecurity is important The hackers claimed that, although they had found flaws in […]

Restaurant Brands International (RBI), owner of well-known chains such as Burger King, Popeyes, and Tim Hortons, has been the target of a cyber attack that revealed serious vulnerabilities in its IT security. Two hackers, known as BobDaHacker and BobTheShoplifter, published a blog detailing their findings, highlighting their ability to access all RBI establishments and listen to conversations in the drive-thrus. In the post, which was online briefly on September 6, the hackers expressed their surprise at what they called “terrible security practices.”

Cybersecurity is important

The hackers claimed that, although they had found catastrophic security flaws, they did not retain any customer data during their investigation, and assured that they followed responsible disclosure protocols. Their intention, according to them, was to expose security issues to improve the company’s protection. However, the blog post was removed 24 hours after its release, after RBI filed a DMCA complaint, although it can still be accessed through Wayback Machine.

Despite the seriousness of the situation, the hackers praised RBI’s response speed in addressing the identified vulnerabilities, although the company has not issued direct comments on the matter. “RBI’s response was impressive,” the attackers noted, reiterating that no customers were harmed during the process.

This incident highlights the need for companies to strengthen their security measures in an environment where cyberattacks are becoming increasingly common. The situation of RBI could serve as a serious reminder of the risks of digital security, and the fact that these vulnerabilities were discovered by hackers for improvement purposes should spark a debate on how companies manage their cyber defenses.

Avast Free Antivirus DOWNLOAD

Cloudflare suffers one of the most massive traffic attacks recorded on the Internet

Cloudflare has announced that it mitigated a record volumetric DDoS attack that reached 11.5 terabits per second in just 35 seconds. This attack, which was classified as a UDP flood, primarily originated from Google Cloud and has highlighted the growing use of malware-infected botnets by attackers. An attack that hides other possible attacks Volumetric DDoS attacks are designed to overwhelm a target with a massive torrent of traffic, causing network congestion, packet loss, and service disruption. These phenomena can degrade […]

Cloudflare has announced that it mitigated a record volumetric DDoS attack that reached 11.5 terabits per second in just 35 seconds. This attack, which was classified as a UDP flood, primarily originated from Google Cloud and has highlighted the increasing use of malware-infected botnets by attackers.

An attack that hides other possible attacks

Volumetric DDoS attacks are designed to overwhelm a target with a massive flood of traffic, causing network congestion, packet loss, and service disruption. These phenomena can significantly degrade server performance, which can lead to failures and complete connectivity outages.

The security firm also warned that this attack was not only intended to cause chaos on the network, but could also be used as a “smokescreen” to carry out more sophisticated attacks. While security teams attempt to mitigate the volumetric attack, the attackers may launch additional attacks aimed at breaching defenses and stealing valuable data.

The report comes after a notable increase in hypervolumetric DDoS attack activity, which escalated from 700 incidents in the first quarter of 2025 to 6,500 in the second quarter of the same year. Cloudflare has been constantly working to keep its defenses active and effective against multiple attacks in a short period of time, thus reflecting the company’s ability to adapt to the growing threat of cyberattacks.

The growing sophistication and volume of these attacks pose a significant challenge for companies that rely on online connectivity, highlighting the importance of having robust security measures in today’s digital age.

Avast Free Antivirus DOWNLOAD