Category: Security

Google has issued an urgent update for Chrome to address a critical zero-day vulnerability, marking the sixth such incident in 2025, as hackers exploit security flaws in the browser.

Google has released an urgent update for its Chrome browser to address a newly discovered zero-day security flaw that is currently being exploited by hackers. This incident marks the sixth zero-day vulnerability that Chrome has faced in 2025, underscoring the rapid pace at which attackers are able to exploit hidden weaknesses in software.

The vulnerability, identified as CVE-2025-10585, originates from a type confusion issue within Chrome’s V8 JavaScript engine. The flaw was discovered by Google’s Threat Analysis Group (TAG), which reported the issue on Tuesday. The company promptly rolled out a fix the following day, as reported by Bleeping Computer.

Google confirmed that this flaw is actively being exploited in the wild, although it has not disclosed specific technical details or identified the groups responsible for the attacks. TAG has a history of uncovering zero-day vulnerabilities linked to government-sponsored spyware campaigns, often targeting high-risk individuals such as journalists, opposition leaders, and dissidents.

The patch has been delivered through Chrome version 140.0.7339.185/.186 for Windows and macOS, and version 140.0.7339.185 for Linux. These updates will gradually reach all users in the Stable Desktop channel over the coming weeks.

While Chrome typically updates automatically, users can manually apply the patch by navigating to the ‘About Google Chrome’ section. Google has chosen to withhold full technical details until a majority of users have installed the update, a precaution aimed at preventing further exploitation of unpatched systems.

This latest vulnerability is part of a concerning trend, as it is the sixth zero-day flaw that Google has patched in Chrome this year. Earlier this year, in March, Google addressed CVE-2025-2783, a sandbox escape bug that was exploited in espionage attacks against Russian organizations. In May, the company released emergency updates for CVE-2025-4664, which allowed attackers to hijack user accounts. In June, another flaw in the V8 engine, CVE-2025-5419, was patched after being identified by TAG. July saw the release of a fix for CVE-2025-6558, which enabled attackers to bypass Chrome’s sandbox protection.

As Google continues to address these vulnerabilities, it is clear that the company is racing to secure its browser against rapidly emerging threats. Updating Chrome is a quick process, whether on Mac or Windows, and users are encouraged to take action immediately.

In addition to updating Chrome, users can take further steps to protect themselves from potential attacks. Many zero-day exploits are delivered through malicious websites or email attachments, so it is crucial to avoid clicking on unknown links or downloading files from unverified sources. Using strong antivirus software can provide an additional layer of defense, helping to detect malicious code that may attempt to run through compromised browsers.

Even if attackers manage to steal login credentials through a browser exploit, enabling two-factor authentication (2FA) can significantly hinder their ability to access accounts. Users are advised to utilize an authenticator app instead of SMS for stronger protection. Additionally, employing a password manager can help keep credentials secure and generate unique, complex passwords, preventing a domino effect if one account is targeted.

It is also advisable for users to check if their email addresses have been exposed in previous data breaches. Many password managers include built-in breach scanners that can alert users if their information has appeared in known leaks. If a match is found, it is essential to change any reused passwords and secure those accounts with new, unique credentials.

While Chrome updates are critical, it is important to remember that attackers can also exploit vulnerabilities in operating systems such as Windows, macOS, Android, or iOS. Regular updates to these systems can patch vulnerabilities across the board, reducing the likelihood of a browser exploit spreading further.

The frequency of zero-day attacks on Chrome this year highlights the relentless nature of cyber threats and the serious gaps that can exist in even the most widely used software. These vulnerabilities represent not just bugs, but opportunities for hackers to exploit millions of users before fixes can be deployed. The growing sophistication of threat actors, including state-sponsored groups targeting high-risk individuals, further complicates the landscape of online security.

As the battle to secure popular software continues, users are encouraged to stay vigilant and proactive in protecting their personal information. Do you think Google is responding quickly enough to safeguard your data? Share your thoughts with us.

Source: Original article

North Korean hackers have leveraged generative AI tools like ChatGPT to create convincing fake military IDs, raising concerns about the evolving landscape of cyber threats.

Generative AI has significantly lowered the barriers for sophisticated cyberattacks, as hackers increasingly exploit tools like ChatGPT to forge documents and identities. A North Korean hacking group known as Kimsuky has recently been reported to have used ChatGPT to generate a fake draft of a South Korean military ID. These forged IDs were then attached to phishing emails that impersonated a South Korean defense institution responsible for issuing credentials to military-affiliated officials.

This alarming campaign was revealed by South Korean cybersecurity firm Genians in a recent blog post. Although ChatGPT has safeguards designed to block attempts to generate government IDs, the hackers managed to trick the system. Genians noted that the model produced realistic-looking mock-ups when prompts were framed as “sample designs for legitimate purposes.”

Kimsuky is not a small-time operator; the group has been linked to a series of espionage campaigns targeting South Korea, Japan, and the United States. In 2020, the U.S. Department of Homeland Security indicated that Kimsuky was “most likely tasked by the North Korean regime with a global intelligence-gathering mission.”

The fake ID scheme underscores the transformative impact of generative AI on cybercrime. “Generative AI has lowered the barrier to entry for sophisticated attacks,” said Sandy Kronenberg, CEO and founder of Netarx, a cybersecurity and IT services company. “As this case shows, hackers can now produce highly convincing fake IDs and other fraudulent assets at scale. The real concern is not just a single fake document, but how these tools are used in combination.” Kronenberg emphasized that an email with a forged attachment could be followed by a phone call or even a video appearance that reinforces the deception.

Experts warn that traditional defenses against phishing attacks may no longer be effective. “For years, employees were trained to look for typos or formatting issues,” explained Clyde Williamson, senior product security architect at Protegrity, a data security and privacy company. “That advice no longer applies. They tricked ChatGPT into designing fake military IDs by asking for ‘sample templates.’ The result looked clean, professional, and convincing. The usual red flags—typos, odd formatting, broken English—weren’t there. AI scrubbed all that out.”

Williamson advocates for a reset in security training, urging organizations to focus on context, intent, and verification. “We need to encourage teams to slow down, check sender information, confirm requests through other channels, and report anything that feels off. There’s no shame in asking questions,” he added. On the technological front, companies should invest in email authentication, phishing-resistant multi-factor authentication (MFA), and real-time monitoring to keep pace with evolving threats.

North Korea is not the only nation employing AI for cyberattacks. Anthropic, an AI research company and creator of the Claude chatbot, reported that a Chinese hacker used Claude as a full-stack cyberattack assistant for over nine months. This hacker targeted Vietnamese telecommunications providers, agriculture systems, and even government databases. Additionally, OpenAI has noted that Chinese hackers have utilized ChatGPT to develop password brute-forcing scripts and to gather sensitive information on U.S. defense networks, satellite systems, and ID verification systems.

Cybersecurity experts express alarm over this shift in tactics. AI tools enable hackers to launch convincing phishing attacks, generate flawless scam messages, and conceal malicious code more effectively than ever before. “News that North Korean hackers used generative AI to forge deepfake military IDs is a wake-up call: The rules of the phishing game have changed, and the old signals we relied on are gone,” Williamson stated.

To navigate this new landscape, both individuals and organizations must remain vigilant. Cybersecurity measures should include verifying requests through trusted channels, employing strong antivirus software, and regularly updating operating systems and applications to patch vulnerabilities. Users should also scrutinize email addresses, phone numbers, and social media handles for discrepancies that may indicate a scam.

As AI continues to evolve, so too must our defenses against its misuse. The tools available to hackers are becoming cleaner, faster, and more convincing, making it imperative for companies to update their training and strengthen their defenses. Everyday users should cultivate a habit of questioning the legitimacy of digital requests and double-checking before taking action.

In conclusion, the rise of AI in cybercrime presents significant challenges. The responsibility to combat these threats lies not only with AI companies but also with everyday users who must adapt to this rapidly changing environment. As the landscape of cybersecurity evolves, staying informed and proactive is essential for safeguarding personal and organizational data.

Source: Original article

Federal authorities warn that scammers are sending unexpected packages containing QR codes that can lead to identity theft and malware, exploiting curiosity to trick victims into revealing personal information.

Scammers are increasingly using QR codes in a new scheme that involves sending unexpected packages to unsuspecting individuals. These packages contain QR codes that, when scanned, can redirect victims to fraudulent websites or download malicious software designed to steal sensitive information.

Once considered a convenient tool for checking menus or making payments, QR codes have now become a weapon in the hands of criminals. The latest warning from federal authorities highlights the extent of these tactics, which include fake delivery texts, counterfeit payment links, and malicious codes that replace legitimate ones.

In this latest scam, criminals send packages that recipients never ordered. Inside these boxes is a QR code that, when scanned, can lead to stolen personal details, drained bank accounts, or malware that operates silently in the background of a victim’s phone.

The FBI has issued a public notice regarding this scam, stating, “The FBI warns the public about a scam variation in which criminals send unsolicited packages containing a QR code that prompts the recipient to provide personal and financial information or unwittingly download malicious software that steals data from their phone.” The agency notes that scammers often ship these packages without sender information to entice victims into scanning the QR code.

This scheme is a variation of what is known as a brushing scam. Traditionally, brushing scams involved online sellers sending products to strangers and then using the recipients’ details to post fake reviews. While brushing scams were more of a nuisance, this new approach has escalated to deliberate fraud. Instead of receiving a product, victims often find only a printed QR code that leads to fraudulent websites asking for sensitive personal information, such as banking details, credit card numbers, or login credentials.

Some QR codes go even further, installing malicious software that can track activity and steal data directly from the device. The consequences of falling victim to such scams can be severe, as fake websites may harvest names, addresses, and financial details, while malware can monitor accounts, log keystrokes, or even target cryptocurrency wallets. Often, victims do not realize they have been compromised until they notice unauthorized charges or suspicious withdrawals, by which time their information may already be in the hands of criminals.

Scammers exploit curiosity and convenience to trick individuals into scanning malicious QR codes. To avoid becoming a target, it is essential to adopt a few simple habits. First, avoid scanning QR codes from mystery deliveries, random flyers, or stickers on public signs. A QR code is essentially a disguised link, and until you know where it leads, it should not be trusted.

Even if you accidentally scan a risky code, keeping strong antivirus software on your phone can help. Mobile security apps can block fraudulent sites, warn you before downloads, and protect against malicious QR code attacks. It is also advisable to scan QR codes only from businesses and organizations you already trust, such as your bank’s mobile app or a known retailer’s checkout page.

Most smartphones allow users to press and hold a QR code link to preview where it leads. If the URL appears suspicious—featuring misspellings, random numbers, or shortened links—do not open it. Taking a moment to check can save you from falling into a phishing trap.

Additionally, the less personal data available about you online, the harder it is for scammers to target you with convincing fraud attempts. Consider using data removal services that scrub your information from people-search sites and marketing databases. While no service can guarantee the removal of all your data from the internet, utilizing a removal service can help you monitor and automate the process of eliminating your information from numerous sites over time.

Even if your login details are compromised, two-factor authentication (2FA) can make it more difficult for criminals to access your accounts. By requiring a secondary code sent to your phone or generated through an authenticator app, 2FA adds an extra layer of security to your banking, email, and trading accounts.

Regular software updates are also crucial, as they often contain fixes for security vulnerabilities that scammers may exploit. Keeping your phone’s operating system and apps up to date provides stronger protection against malware that can be delivered through malicious QR codes.

If you receive an unexpected package containing a QR code, do not simply discard it. Report it to local authorities and consider filing a complaint with the FBI’s Internet Crime Complaint Center. Reporting these incidents not only helps protect you but also provides law enforcement with valuable information to track the spread of these scams.

While this scam may not be widespread yet, it illustrates how quickly criminals can adapt to new technology. QR codes were intended to simplify life, and they often do, but that convenience can become a vulnerability when curiosity overrides caution. The key takeaway is that a mystery package with a QR code is not a fun puzzle to solve; it is a red flag. The safest course of action is to resist the urge to scan and report any suspicious packages instead.

Source: Original article