Polymath Central

⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips

December 23, 2024

The online world never takes a break, and this week shows why. From ransomware creators being caught to hackers backed by governments trying new tricks, the message is clear: cybercriminals…

Cybersecurity

AI Could Generate 10,000 Malware Variants, Evading Detection in 88% of Case

December 23, 2024

Cybersecurity researchers have found that it’s possible to use large language models (LLMs) to generate new variants of malicious JavaScript code at scale in a manner that can better evade…

Cybersecurity

Rockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-Service

December 23, 2024

An interruption to the phishing-as-a-service (PhaaS) toolkit called Rockstar 2FA has led to a rapid uptick in activity from another nascent offering named FlowerStorm. “It appears that the group running…

Cybersecurity

Top 10 Cybersecurity Trends to Expect in 2025

December 23, 2024

The 2025 cybersecurity landscape is increasingly complex, driven by sophisticated cyber threats, increased regulation, and rapidly evolving technology. In 2025, organizations will be challenged with protecting sensitive information for their…

Cybersecurity

U.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware Case

December 23, 2024

Meta Platforms-owned WhatsApp scored a major legal victory in its fight against Israeli commercial spyware vendor NSO Group after a federal judge in the U.S. state of California ruled in…

Cybersecurity

Italy Fines OpenAI €15 Million for ChatGPT GDPR Data Privacy Violations

December 23, 2024

Italy’s data protection authority has fined ChatGPT maker OpenAI a fine of €15 million ($15.66 million) over how the generative artificial intelligence application handles personal data. The fine comes nearly…

Cybersecurity

LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damages

December 21, 2024

A dual Russian and Israeli national has been charged in the United States for allegedly being the developer of the now-defunct LockBit ransomware-as-a-service (RaaS) operation since its inception in or…

Cybersecurity

Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware

December 20, 2024

The Lazarus Group, an infamous threat actor linked to the Democratic People’s Republic of Korea (DPRK), has been observed leveraging a “complex infection chain” targeting at least two employees belonging…

Cybersecurity

Sophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent Exploitation

December 20, 2024

Sophos has released hotfixes to address three security flaws in Sophos Firewall products that could be exploited to achieve remote code execution and allow privileged system access under certain conditions.…

Cybersecurity

Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack

December 20, 2024

The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish…