AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
The Hacker News

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 spreads fake VPN installers via SEO poisoning and GitHub downloads, stealing enterprise VPN credentials with Hyrax malware.
PCMag

Fake Apps, Fraudulent Emails, and Very Real Hackers: Another Week in the Infosec Trenches

This week saw attacks on Claude Code users, LastPass users, Starlink users, and, perhaps worst of all, people who needed an ambulance. Add a dash of AI hacking, and you have another wild week in ...
PCMag

US Helps Shut Down Proxy Service Used to Hack Thousands of Routers

SocksEscort sold proxy services on the open web, but was actually routing traffic through compromised routers and internet-connected devices.

New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network

A newly discovered botnet malware called KadNap is targeting ASUS routers and other edge networking devices to turn them into ...
Financial Advisor

Your Client Has Been Hacked

Thousands of families are attacked every day by cybercriminals. Cybercrime has become so pervasive that the average U.S. citizen is far likelier to be victimized online than offline. We see this ...
CNBC

Advisors to the ultra rich say AI isn't a gamechanger for landing new clients

Wealth advisors to the ultra rich say referrals and word of mouth still beat AI for landing new clients — at least for now. While market data firms pitch artificial intelligence as the key to finding ...
Barron's

Hack Hits Spanish Energy Giant Endesa's Client Data

Hack Hits Spanish Energy Giant Endesa's Client Data By AFP - Agence France Presse Jan 12, 2026, 11:53 am EST Share ...
Financial Advisor

Your Client Has Been Hacked Big Time--What Do You Do Now?

Thousands of families are attacked every day by cybercriminals. Cybercrime has become so pervasive that the average U.S. citizen is far likelier to be victimized online than offline. We see this ...
The Record

Judge rules NSO Group is liable for spyware hacks targeting 1,400 WhatsApp user devices

The developer of the powerful Pegasus spyware was found liable on Friday for its role in the infection of devices belonging to 1,400 WhatsApp users. The precedent-setting ruling from a Northern ...
Seeking Alpha

Chase, Citi, Morgan Stanley assess fallout of vendor hack - report

A recent cyberattack on SitusAMC, a technology vendor for real estate lenders, has potentially exposed sensitive customer data from some of the nation’s largest banks, according to a report by The New ...
U.S. News & World Report

JPMorgan, Citi, Morgan Stanley Client Data May Be Exposed by Vendor's Hack, NYT Reports

(Reuters) -Client data for JPMorgan Chase, Citi, Morgan Stanley and other major banks may have been accessed in a hack of a technology vendor, the New York Times reported on Saturday, citing people ...