Geek-Guy.com

Tag: over

AI, Apps, Compliance, Cybersecurity, Data Breaches, Global Security News, malware, Network Security, Risk Management

Active Magecart Campaign Targets Spain, Steals Card Data via Hijacked eStores for Bank Fraud 

A large-scale magecart operation remained active for over 24 months, leveraging an infrastructure of 100+ domains. While the targeted victims are e-commerce websites, the actual pressure falls on banks and payment systems. As ANY.RUN’s analysis shows, threat actors applied multi-step checkout hijacking, payment page mimicry, and WebSocket-based exfiltration of card data.  This report provides both executive-level insights and technical analysis of the campaign.  Key Takeaways  The campaign demonstrates long-term persistence…

Read more →

Global Security News, Network Security, Risk Management

LexisNexis® Risk Solutions’ latest Cybercrime Report reveals key global fraud trends emerging over the past year. Derived from analysis of more than 116 billion online transactions detected through our LexisNexis® Digital Identity Network® in 2025, t

 LexisNexis® Risk Solutions’ latest Cybercrime Report reveals key global fraud trends emerging over the past year. Derived from analysis of more than 116 billion online transactions detected through our LexisNexis® Digital Identity Network® in 2025, the report shows a significant 8% rise in global fraud rates driven by attacks targeting the gaming and gambling and ecommerce sectors, cost of living pressures and new emerging fraud tactics.

Read more →

Global Security News, Network Security, Risk Management

LexisNexis® Risk Solutions’ latest Cybercrime Report reveals key global fraud trends emerging over the past year. Derived from analysis of more than 116 billion online transactions detected through our LexisNexis® Digital Identity Network® in 2025, t

 LexisNexis® Risk Solutions’ latest Cybercrime Report reveals key global fraud trends emerging over the past year. Derived from analysis of more than 116 billion online transactions detected through our LexisNexis® Digital Identity Network® in 2025, the report shows a significant 8% rise in global fraud rates driven by attacks targeting the gaming and gambling and ecommerce sectors, cost of living pressures and new emerging fraud tactics.

Read more →

AI, Global Security News

Forrester: Asia Pacific Tech Spending Expected To Grow 9.3% In 2026, But Rising Costs And Regulations Will Impact Real Growth

According to Forrester’s Asia Pacific Tech Market Forecast, 2026 To 2030, the region will spend over US$437 billion on acquiring new technology between 2025 and 2030. Forrester estimates that total spending on technology will grow by 9.3%, driven by investments in software, services, communications equipment, and tech outsourcing, but cost pressures (such as software inflation and hardware spikes), regulatory fragmentation, tariffs, energy shocks, uneven regional growth, and talent shortages will reduce…

Read more →

AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management

FCC targets foreign router imports amid rising cybersecurity concerns

The FCC will ban new foreign-made routers in the U.S. over security risks, unless approved by DHS or defense authorities. The U.S. FCC announced a ban on importing new foreign-made consumer routers, citing unacceptable cyber and national security risks. The decision, backed by Executive Branch assessments, means such devices can no longer be sold or…

Read more →

AI, Cybersecurity, Data Breaches, Global Security News, Government & Policy, Network Security

QualDerm Partners December 2025 data breach impacts over 3 Million people

Over 3.1M people affected as QualDerm Partners suffered a December 2025 breach, exposing personal, medical, and health insurance data. Over 3.1 million people are affected by a December 2025 data breach at QualDerm Partners, where hackers stole personal, medical, and health insurance information from the company’s internal systems. QualDerm Partners is a U.S.-based healthcare management…

Read more →

Global Security News

Measuring security performance in real-time, not once a quarter

Most organizations have invested heavily in security products over the past decade. The assumption embedded in that spending is that more tools equal better protection. Tim Nan, CEO of digiDations, says that assumption is the most persistent misconception he encounters when working with security leaders across industries. “Adversaries don’t operate on averages,” Nan says. “They…

Read more →

AI, china, Data Breaches, Exploits, Global Security News, Government & Policy, Network Security, Risk Management

The espionage reality: Your infrastructure is already in the collection path

Threat actors have always sought advantage over their targets. Recently we’ve seen two efforts designed for long-term intelligence gain. This activity surfaced right where you would expect inside the enterprise. Enterprises now sit directly in the adversary’s collection path. They don’t have to be the target; they are on the board and in play because…

Read more →

Europe, Global Security News

Elite members of North Korean society fake their way into Western paychecks

Increased federal activity, including indictments over the past year, has drawn attention to a pattern that has been unfolding inside corporate hiring pipelines. North Korean nationals are securing roles as remote IT contractors and full-time staff within organizations across North America and Western Europe, using standard hiring channels to get in. Research by IBM X-Force…

Read more →

AI, Data Breaches, Exploits, Global Security News, privacy, Risk Management

CVE-2026-20643: Vulnerability in WebKit Navigation API May Bypass Same Origin Policy

Just a little over a month after fixing the actively exploited CVE-2026-20700 zero-day, Apple has now issued its first Background Security Improvements release to address CVE-2026-20643, a WebKit vulnerability that could allow maliciously crafted web content to bypass the Same Origin Policy, one of the browser’s core security boundaries. The issue in the limelight adds…

Read more →

AI, china, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Network Security

EU sanctions Chinese and Iranian actors over cyberattacks on critical infrastructure

EU sanctions Chinese and Iranian firms and individuals for cyberattacks targeting critical infrastructure and over 65,000 devices across member states. The Council of the European Union has imposed sanctions on three companies and two individuals linked to cyberattacks against EU countries and partners. “The Council adopted today restrictive measures against three entities and two individuals responsible for cyber-attacks carried…

Read more →

AI, Global Security News, Government & Policy, Risk Management

Anthropic announces think tank to examine AI’s effect on economy and society

Fresh from battling the US Department of Defense (DoD) over AI guardrails, Anthropic has returned this week with a new initiative: the company is founding a think tank, the Anthropic Institute, “to confront the most significant challenges that powerful AI will pose to our societies.” Headed by Anthropic co-founder Jack Clark, who will take up…

Read more →

AI, Cloud Security, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management, Venture

There’s only one kind of tool security teams should be building with AI

I am not sure what I’ve been doing on social media over the past year (particularly on LinkedIn), but these days my feed is filled with posts of security people who build some very cool tools. There’s so much excitement that with LLMs, anyone can now be a product developer, which means that security teams…

Read more →

AI, Global Security News, Government & Policy, Risk Management

OpenAI robotics chief quits over Pentagon deal

OpenAI’s head of robotics, Caitlin Kalinowski, has resigned over the company’s contract with the US Department of War, saying key safeguards around domestic surveillance and autonomous weapons were not adequately reviewed before the agreement was signed. “Surveillance of Americans without judicial oversight and lethal autonomy without human authorization are lines that deserved more deliberation than…

Read more →

AI, Exploits, Global Security News, Risk Management

OpenAI says Codex Security found 11,000 high-impact bugs in a month

OpenAI’s new AppSec agent, Codex Security, has already flagged over 11,000 high-severity and critical flaws in real-world codebases during its first 30 days of research testing. The tool, designed to automatically find, validate, and fix vulnerabilities in software repositories, reportedly identified about 800 critical issues in more than a million scanned commits. According to an…

Read more →

Cybersecurity, Global Security News

ThreatsDay Bulletin: DDR5 Bot Scalping, Samsung TV Tracking, Reddit Privacy Fine & More

Some weeks in cybersecurity feel routine. This one doesn’t. Several new developments surfaced over the past few days, showing how quickly the threat landscape keeps shifting. Researchers uncovered fresh activity, security teams shared new findings, and a few unexpected moves from major tech companies also drew attention. Together, these updates offer a useful snapshot of…

Read more →

AI, Exploits, Global Security News

Coruna: Spy-grade iOS exploit kit powering financial crime

A powerful iOS exploit kit has circulated among multiple threat actors over the past year, moving from a commercial surveillance operation to state-linked espionage campaigns and, ultimately, ended into the hands of financially motivated hackers, according to new research from Google’s Threat Intelligence Group (GTIG). “The exploit kit, named ‘Coruna’ by its developers, contained five…

Read more →

AI, Data Breaches, Global Security News, Network Security

Cloudflare tracked 230 billion daily threats and here is what it found

Cloudflare’s network blocks over 230 billion threats per day. The volume indicates how routine and automated the attack cycle has become, and the patterns behind that volume point to a shift in how breaches begin and progress. Cloudflare’s threat research unit, Cloudforce One, published its inaugural cyber threat report 2026, covering activity observed through 2025…

Read more →

AI, APAC, Apps, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management, Venture

Anthropic won’t kill cyber, but it will kill some companies

Over the past several weeks, social media has been exploding with predictions that “cyber is dead”. It doesn’t take much insight to jump on that bandwagon, as Anthropic’s announcement of Claude Code Security indeed sent the cybersecurity public market into turmoil, with some companies losing as much as 20% of their market cap. Contrary to…

Read more →

AI, Global Security News, Risk Management

Anthropic poaches users from rival chatbots with easier migration

The controversy over Anthropic’s negotiations with the Pentagon has driven increased interest in Claude. Negotiations between the Department of Defense and Anthropic collapsed after a deadline for an agreement expired without a deal. The Pentagon had pressed the company to loosen certain restrictions on how its AI systems could be used. Anthropic declined and kept…

Read more →

AI, Compliance, Data Breaches, Europe, Global Security News

Europe forces a search reset: Google experiments with fairer rankings

Google continues to find itself in hot water over its alleged antitrust tactics and monopolization of certain market segments. Now its parent company, Alphabet, seems to be ceding to EU scrutiny of its search practices.  The company will reportedly begin testing changes to its search engine results in the EU to more fairly represent vertical…

Read more →

AI, Global Security News, Government & Policy, Network Security, Risk Management

US DoD to Anthropic: compromise AI ethics or be banished from supply chain

A growing rift between the US Department of Defense (DoD) and Anthropic over how AI can be used by the military has led to Defense Secretary Pete Hegseth issuing a blunt ultimatum: work with us on our terms or risk being banned from Pentagon programs. According to news site Axios, Hegseth gave Anthropic until Friday,…

Read more →

AI, Apps, Exploits, Global Security News, Government & Policy, Russia

Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero

A former employee at U.S. defense contractor L3Harris got over 7 years in prison for selling eight zero-days to a Russian broker. Peter Williams, a 39-year-old Australian former L3Harris employee, received a prison sentence of just over seven years for selling eight zero-day exploits to the Russian broker Operation Zero for millions. Williams pleaded guilty…

Read more →

AI, Cybersecurity, Exploits, Global Security News, Government & Policy, Russia

Ex-L3Harris executive sentenced to 87 months in prison for selling zero-day exploits to Russian broker

An ex-L3 Harris executive was sentenced to over seven years in prison Tuesday after pleading guilty to selling eight zero-day exploits to a Russian broker in exchange for millions of dollars. Williams, 39, admitted to two counts of theft of trade secrets in U.S. District Court in Washington, D.C., last year, acknowledging he took at…

Read more →

AI, china, Exploits, Global Security News, Network Security, Russia

AI-powered campaign compromises 600 FortiGate systems worldwide

A Russian-speaking cybercriminal used commercial generative AI tools to hack over 600 FortiGate devices across 55 countries. Amazon Threat Intelligence reports that a Russian-speaking, financially motivated threat actor used commercial generative AI services to compromise more than 600 FortiGate devices in 55 countries. The activity, observed between January 11 and February 18, 2026, highlights how…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Europe, Global Security News, Network Security

Red Card 2.0: INTERPOL busts scam networks across Africa, seizes millions

INTERPOL’s Operation Red Card 2.0 led to 651 arrests across 16 African countries and recovered over $4.3 million from online scams. INTERPOL’s Operation Red Card 2.0, a joint effort involving law enforcement agencies from 16 African countries, resulted in 651 arrests linked to online scam networks. The operation was carried out under the African Joint…

Read more →

AI, Apps, Compliance, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management

better-auth Flaw Allows Unauthenticated API Key Creation

A vulnerability in the better-auth library could allow attackers to take over user accounts without ever logging in.  The flaw affects the library’s API keys plugin and enables unauthenticated attackers to mint privileged API keys for arbitrary users. Exploitation of the vulnerability grants “… full authenticated access as the targeted user and, depending on the…

Read more →

AI, Compliance, Data Breaches, Europe, Global Security News, privacy

Irish regulator probes X after Grok allegedly generated sexual images of children

Ireland’s Data Protection Commission opened a probe into X over Grok AI tool allegedly generating sexual images, including of children. Ireland’s Data Protection Commission has launched another investigation into X over Grok’s AI image generator. The probe focuses on reports that the tool created large volumes of non-consensual and sexualized images, including content involving children,…

Read more →

AI, Breaking News, cyber crime, data breach, Data Breaches, Global Security News, hacking, Security

ApolloMD data breach impacts 626,540 people

A May 2025 cyberattack on ApolloMD exposed the personal data of over 626,000 patients linked to affiliated physicians and practices. ApolloMD is a US-based healthcare services company that partners with hospitals, health systems, and physician practices. It provides practice management, staffing, revenue cycle, and administrative support services. The company works with affiliated physicians across specialties…

Read more →

AI, Endpoint, Exploits, Global Security News, Uncategorized

Multiple Endpoint Manager bugs patched by Ivanti, including remote auth bypass

Ivanti patched over a dozen Endpoint Manager flaws, including a high-severity auth bypass that let attackers steal credentials remotely. Ivanti released patches for more than a dozen vulnerabilities in Endpoint Manager, including flaws disclosed in October 2025. The update addresses a high-severity authentication bypass, tracked as CVE-2026-1603 (CVSS score of 8.6), that attackers could exploit…

Read more →

AI, Global Security News, Network Security

How Samsung Knox Helps Stop Your Network Security Breach

As you know, enterprise network security has undergone significant evolution over the past decade. Firewalls have become more intelligent, threat detection methods have advanced, and access controls are now more detailed. However (and it’s a big “however”), the increasing use of mobile devices in business operations necessitates network security measures that are specifically

Read more →

AI, business, E-Commerce, Global Security News, News, trends

5 Small Business E-Commerce Trends for 2022 

The e-commerce space has seen a huge boom over the past two years due to changes in consumer shopping habits. This year will likely see major changes and advancements in e-commerce, and your business may get left behind if you don’t stay ahead of the curve.  Here are the top e-commerce trends that small businesses […]

The post 5 Small Business E-Commerce Trends for 2022  appeared first on Small Business Computing.

Read more →