Fake Rewards Campaign Targets Mobile Users Through SMS
A new scam is targeting mobile users through SMS messages offering fake reward points and gifts, directing victims to a fraudulent website that requests shipping charges for non existent items.
A new scam is targeting mobile users through SMS messages offering fake reward points and gifts, directing victims to a fraudulent website that requests shipping charges for non existent items.
Fraudsters used AI deepfake technology to impersonate Dubai Crown Prince during live video calls, deceiving victims in romance scams that resulted in financial losses and emotional harm.
Researchers have uncovered QuimaRAT, a new Java based malware as a service platform that targets Windows, Linux, and macOS with modular plugins, credential theft, persistence, and remote control capabilities.
Researchers uncovered a vulnerability in Opera GX that allowed malicious websites to silently install browser mods and extract user data from visited pages. Opera has released a patch to address the issue.
NCSA Air University and Lahore Garrison University discussed collaboration in digital forensics, cyber security education, and forensic science while highlighting the importance of digital evidence and specialized forensic laboratories.
National CERT Pakistan held the fifth session of its Executive Cybersecurity Leadership Program, focusing on incident response, crisis management, business continuity, disaster recovery, and organizational resilience.
A Linux kernel vulnerability called Bad Epoll (CVE-2026-46242) allows unprivileged users to gain root access, affecting Linux systems and Android devices with a patch already available.
Security researchers have identified Umbrij malware used by ToddyCat APT to exploit OAuth tokens and browser sessions via Google API, enabling covert access to Gmail corporate communications.
Ransomware actors linked to Anubis and other groups are exploiting Citrix Bleed 2, BYOVD techniques, and stolen VPN credentials to gain access, move laterally, and deploy ransomware across enterprise networks.
Security researchers have discovered PamStealer, a macOS infostealer using fake Maccy websites, AppleScript loaders, and PAM validation to steal login passwords and sensitive data.