Dangerous Cheats, Phishing Attacks, and New AI Threats: Latest Cybersecurity Incidents
Date: 2025-03-24 Author: Henry Casey Categories: BUSINESS
Researchers from Kaspersky reported a malicious campaign disguised as video game cheat ads on YouTube. Under the videos, archives containing the Arcane program, which is capable of stealing data, are posted. It especially targets crypto wallets, including Exodus, Atomic Wallet, Coinomi, and others. The malware also extracts information from browsers, VPNs, messengers, and gaming services. The largest number of infections has been recorded in Russia, Belarus, and Kazakhstan.
The Binance platform has drawn the attention of users to the dangers of fraudulent SMS messages posing as official notifications. These messages report "suspicious activity" and offer to transfer funds to a "safe" wallet. The exchange representatives emphasized that they do not request transfers or calls and recommended ignoring such requests.
In addition, scammers distribute Trojans, disguising them as legitimate tools. An example is the Bom application, posing as a mining program. Once installed, it requests access to files and searches for private key data or seed phrases. This attack resulted in the theft of more than $650,000 on several blockchains.
Specialists from Pillar Security have identified a new method of attacking AI tools like GitHub Copilot and Cursor. Attackers embed malicious commands in configuration files using invisible Unicode characters. This allows them to introduce vulnerabilities and backdoors into the generated code that bypass traditional verification methods. The developers of Copilot and Cursor stated that the responsibility for checking the code remains with the users.
WhatsApp has confirmed that it has fixed a zero-day vulnerability used to install Paragon's Graphite spyware. The update was applied in late 2024 and did not require any action from users. The company has directly contacted potentially affected individuals, including journalists and NGO representatives.
On March 20, users in Russia experienced difficulties accessing sites such as YouTube, Twitch, and TikTok. Roskomnadzor linked the problem to technical problems with foreign hosting providers. However, experts from the ntc.party forum believe that this is a case of blocking the Cloudflare CDN service, since not all providers experienced the failure.
The UK National Cyber Security Centre has required critical structures to switch to post-quantum security methods by 2035. These include government agencies, large businesses, and technology providers. A similar PQC implementation schedule is set in the US according to National Memorandum No. 10.
