GPS Spoofing Cripples Aviation, AI Poisoning Attacks Emerge, and Massive Data Breaches Hit Healthcare and Crime Reporting Services

G7 Responds with GNSS Resilience Act as GPS Spoofing Attacks Cripple Global Aviation and Threaten Power Grids

A wave of sophisticated GPS spoofing attacks is targeting civil aviation and critical infrastructure across the Middle East and Europe. Attackers are using "time skew sabotage" to disrupt aircraft automated landing systems and attempting "flow reversal" attack...

"Bband Siphon 16.0" Android Malware Steals Location Data Directly from Communication Chip, Works Even When Phone is Off

A novel Android malware named "Bband Siphon 16.0" has been discovered, representing a significant escalation in mobile threats. It targets the device's communication (baseband) chip directly, bypassing the OS to exfiltrate location data. Its most alarming feat...

"Phantom Entry" Zero-Day Hits Building Management Systems; Gov Agencies Ordered to Take Smart Meters Offline

A critical zero-day vulnerability dubbed "Phantom Entry" has been discovered in building management systems (BMS), enabling unauthorized physical and logical access. The threat is considered so severe that a government directive has ordered all smart metering...

Cloud Sweep Group's "Phase 30" Attack Embeds Ransomware in Cold Storage Backups, Defeating Recovery Efforts

The notorious threat actor group "Cloud Sweep" has launched "Phase 30," a sophisticated new attack campaign that targets cold storage backups. The group's novel technique involves embedding dormant malware into data archives during the backup process. When an...

Massive Telehealth Breach Exposes 30 Million Patient Video Records, Sparking Deepfake Scam Fears

A leading international telehealth platform has suffered a catastrophic data breach, resulting in the theft of 30 million patient video consultation records. While the company remains unnamed, the scale of the breach is staggering, exposing highly sensitive an...

"LAR Blinding Attacks" Use Lasers to Deceive Autonomous Car Sensors, Creating Critical Collision Risks

A new cyber-physical attack method targeting autonomous vehicles, dubbed "LAR blinding," has been demonstrated. The attack uses coordinated lasers to jam and feed false signals into a self-driving car's sensors, such as LiDAR and cameras. This manipulation eff...

New "Latent Poisoning" Attack Embeds Hidden Backdoors in AI Models, Triggered by Secret Prompts

Security researchers have discovered a sophisticated new AI attack method called "latent poisoning." This technique embeds hidden, triggerable vulnerabilities within an AI model's training data. The compromised model behaves normally until an attacker provides...

EU Proposes Mandatory Audits for AI Training Data to Combat Data Poisoning Attacks

The European Union is drafting landmark legislation aimed at securing the AI supply chain. The proposed rules would mandate that companies developing or deploying AI systems within the EU must have their training datasets audited and certified by independent s...

Cyber Attack Paralyzes Parking Payment System in Russian City, Highlighting Urban Infrastructure Vulnerabilities

A cyber attack has disrupted the municipal parking payment system in an unnamed Russian city, preventing citizens from paying for parking. Details regarding the type of attack, the threat actor responsible, and the duration of the outage have not yet been disc...

Payload Ransomware Group Claims Attack on Royal Bahrain Hospital, Threatening Patient Data Leak

The Payload ransomware group has claimed responsibility for a cyber attack against the Royal Bahrain Hospital, listing the healthcare provider as a victim on its dark web leak site. This incident is a classic double-extortion attack, where the group has likely...

Crimestoppers Data Breach Exposes 8.3 Million Anonymous Crime Tip Records, Endangering Whistleblowers

The anonymous crime reporting service Crimestoppers has suffered a catastrophic data breach, with a threat actor claiming to have stolen and leaked 8.3 million records. This incident strikes at the heart of the service's mission, which is built on the promise...

Bit Refill Blames North Korea-Linked Hackers for Cyber Attack on Cryptocurrency Platform

The cryptocurrency gift card platform Bit Refill has publicly attributed a recent cyber attack to a hacker group linked with North Korea. While the company has not yet detailed the full impact of the attack, such as whether customer funds were stolen, the accu...