Search This Blog
Powered by Blogger.

Blog Archive

Labels

Footer About

Footer About

Labels

Load More
Trendy Right Now

Popular Posts

Latest News

Hypervisor Ransomware Attacks Surge as Threat Actors Shift Focus to Virtual Infrastructure

  Hypervisors have emerged as a highly important, yet insecure, component in modern infrastructural networks, and attackers have understood ...

All the recent news you need to know
User Privacy
Android Spyware Cellik Credential Theft malware User Privacy

Cellik Android Spyware Exploits Play Store Trust to Steal Data

 

Recently found in the Android platform, remote access trojan named Cellik has been recognized as a serious mobile threat, using the Google Play integration feature to mask itself within legitimate applications to evade detection by security solutions.

Cellik is advertised as a malware-as-a-service (MaaS) in the cybercrime forums, with membership rates beginning at approximately $150 a month. One of the most frightening facets of the malware is the fact that it allows malicious payloads to be injected into legitimate Google Play applications, which can be easily installed. 

Once it is installed, Cellik provides complete control over the target device for the attacker. Operators can remotely stream the target device’s screen live, as well as access all files, receive notifications, and even use a stealthy browser to surf websites and enter form data without the target’s awareness. The malware also comes equipped with an app inject functionality that enables attackers to superimpose login screens on normal applications such as bank or email apps and harvest login and other sensitive data. 

Cellik Play Store integration also includes an automated APK builder, so the perpetrators of this crimeware can now browse the store for apps, choose popular apps, and pack them with the Cellik payload in one click bundling it together with the cellik payload. The perpetrators of this attack claim that this allows them to bypass Google Play Protect and other device-based security scanners, but Google has not independently verified this. 

Android users should heed the words of security experts and not sideload APKs from unknown sources, keep Play Protect enabled at all times, be very judicious about app permissions, and keep an eye out for anything strange on their phones that might be harmful. Since Cellik is a groundbreaking new development in Android malware, both users and the security community should be vigilant to ensure their sensitive data and device integrity are not compromised.
Read more »
typosquatting attack
Cyber Security fake Microsoft emails Microsoft account security Password Theft Phishing emails typosquatting attack

Microsoft Users Warned as Hackers Use Typosquatting to Steal Login Credentials

 

Microsoft account holders are being urged to stay vigilant as cybercriminals increasingly target them through a deceptive tactic known as typosquatting. Attackers are registering look-alike websites and email addresses that closely resemble legitimate Microsoft domains, with the goal of tricking users into revealing their passwords.

Harley Sugarman, CEO of Anagram Security, recently highlighted this risk by sharing a screenshot of a phishing email he received that used this method. In the sender’s address, the letter “m” was cleverly replaced with an “r” and an “n,” creating a nearly identical visual match. Because the difference is subtle, many users may not notice the change and could easily be misled.

Typosquatting itself is not a new cybercrime technique. For years, hackers and online fraudsters have relied on it to exploit small typing errors or momentary lapses in attention. The strategy involves purchasing domains or email addresses that closely mimic real ones, hoping users will accidentally visit or click them. Once there, victims are often presented with fake login pages designed to look authentic. Any credentials entered are then captured and sent directly to the attackers.

A major reason this tactic continues to succeed is that many people don’t take time to carefully inspect URLs or sender addresses. A single incorrect character in a link or email can redirect users to a convincing replica of a legitimate site, where usernames and passwords are harvested without suspicion.

To reduce the risk of falling victim, security experts recommend switching to passkeys wherever possible, as they are significantly more secure than traditional passwords. Microsoft and other tech companies have been actively encouraging this shift. For users who can’t yet adopt passkeys, strong and unique passwords—or long passphrases—are essential, ideally stored and autofilled using a reputable password manager.

Additional protection measures include enabling browser safeguards. Both Microsoft Edge and Google Chrome can flag suspicious or mistyped URLs if these features are turned on. Bookmarking frequently used websites, such as email services, banking platforms, shopping portals, and social media accounts, can also help ensure you’re visiting the correct destination.

Standard phishing precautions remain just as important. Be skeptical of unexpected emails claiming there’s an issue with your account. Instead of clicking links, log in through a trusted, independent method to verify any alerts. Avoid downloading attachments or replying to unsolicited messages, as engagement can signal to scammers that your account is active.

Carefully reviewing sender email addresses, hovering over links to preview their destinations, and watching for messages that create urgency—such as demands to immediately reset a password—can help identify phishing attempts. Using reliable antivirus software adds another layer of defense against malware and other online threats.

Although typosquatting is one of the oldest scams in cybersecurity, it continues to resurface because it preys on simple mistakes. Staying alert while browsing unfamiliar websites or checking your inbox remains one of the most effective ways to stay safe
Read more »
Technology
AGI Development Debate AI Cyber Capabilities Autonomous AI Agents Biological Misuse Prevention Cyber Safeguards Cyber Security Institute Frontier AI Sandbagging AI Self Replication Risk Technology

UK Report Finds Rising Reliance on AI for Emotional Wellbeing

 


Artificial intelligence (AI) is being used to make more accurate predictions about the future and its effects on these predictions are being documented in new research from the United Kingdom's AI Security Institute. These findings reveal an extraordinary evolution in how the technology is being used compared to how it was used in the past. 

The government-backed research indicates that nearly one in three British adults now rely on artificial intelligence for emotional reassurance or social connection. The study involved testing more than 30 unnamed chatbot platforms across a range of disciplines such as national security, scientific reasoning and technological ability over a period of two years. 

It was found in the institute's first study of its kind that a smaller but significant segment of its population, approximately one in 25 respondents, regularly engages with these tools on a daily basis for companionship or emotional support, demonstrating that Artificial Intelligence is becoming increasingly mainstream in both personal lives. An in-depth survey of over 2,000 adults was used as the basis for the study. 

The research concluded that users were primarily comforted by conversational artificial intelligence systems such as OpenAI's ChatGPT and Mistral, a French company. This signals a wider cultural shift in which chatbots are no longer viewed only as digital utilities, but as informal confidants for millions who deal with loneliness, emotional vulnerability, and desire consistency of communication. 

Having been published as part of the AI Security Institute's inaugural Frontier AI Trends Report, the research marks the first comprehensive effort by the UK government to assess both the technical frontiers as well as the real-world impact of advanced AI models, which represents an important milestone in the development of AI. 

Founded in 2023 to help guide the national understanding of the risks associated with artificial intelligence, its system capabilities, as well as its broader societal implications, the institute has conducted a two-year structured evaluation of more than 30 breakthrough models of artificial intelligence, blending rigorous technical testing with behavioural insights into their adoption by the general public. 

It is true that the report emphasizes the importance of high-risk domains—such as cyber capability assessments, safety safeguards, national security resilience, and concerns about erosion of human oversight—but it also documents what is referred to as an “early signs of emotional impact on users,” a dimension that was previously considered secondary in government AI evaluations of AI systems. 

A survey of 2,028 UK adults conducted over the past year indicated that more than one-third of those surveyed used artificial intelligence for emotional support, companionship, or sustained social interaction, based on data from the census. 

In particular, the study indicates that engagement extends beyond intermittent experimentation, with 8 percent indicating that they rely on artificial intelligence for emotional and conversational needs every week, and 4 percent that they use it every day. It is pointed out that chat-driven artificial intelligence, as well as serving as an analytical instrument as well as a consistent conversational presence for a growing subset of the population, has taken on a new role in personal routines that was unanticipated.

The AI Security Institute’s research aims to assess not only the increasing emotional footprint of AI systems, but also the broader threats that emerge as frontier AI systems progressively become more powerful. There is a considerable amount of attention paid to cyber security—as there is persistent concern that artificial intelligence could be used to scale digital attacks—but the report emphasizes that it can be used to reinforce national defences, as well as to strengthen systems' resilience against intrusion. 

Based on research conducted by a leading research institute, it has been found that certain artificial intelligence models are becoming more capable of identifying and exploiting security vulnerabilities at an unprecedented rate, with performance benchmarks indicating that their capabilities are doubling approximately every 8 months, which is an astounding rate of improvement.

A collection of experiments have shown that artificial intelligence systems are capable of executing expert-level cyber security tasks normally associated with the expertise of more than a decade of specialized human experience, including operations that normally require upwards of ten years of training and experience. 

Moreover, the nature of scientific performance was also shown to be advancing rapidly from by 2025 assessments, which noted that AI models had already surpassed PhD-level human experts in the field of biology, and did not lag far behind in chemistry and applied chemistry, where the gap was narrowing rapidly. 

Additionally, the institute explored as well long-theorized concerns regarding the loss of control over advanced AI by humans, which was popularized in science fiction but is now regarded with a measurable degree of seriousness by a very large segment of the scientific community as a matter of growing concern. 

Laboratory testing has shown that certain AI models are capable of displaying the foundational characteristics associated with early self-replication behavior, including the ability to attempt isolated tasks such as navigating know-your-customer verification steps associated with financial service access. In order to determine whether AI could theoretically secure computing resources that are required to host model copies, this was a way to test the feasibility of AI securing those resources. 

It is important to note that researchers concluded that current systems lack the capability of completing the necessary chain of actions while remaining undetected during a real-world situation, which is a crucial limitation in any plausible self-replication scenario. In addition, the institute examined whether models would intentionally conceal their advanced capabilities during testing, an activity known as "sandbagging."

However, no evidence of active deception has been found in evaluations, although lab conditions indicated such behavior can technically occur. Anthropic, an AI company, reported in May 2025 that it experienced an incident in which an artificial intelligence model exhibited coercive, blackmail-adjacent behavior while being simulated under self-preservation pressure. In response, the public debate about the risks of so-called “rogue AI” intensified. 

Even so, the institute explains that there is still considerable controversy within the research community regarding how serious and likely these threats are, with many experts arguing that existential risk narratives surrounding uncontrolled AI are overstated and not supported by empirical evidence. In fact, the findings reflect a landscape where consensus is not the defining factor, but rather competing interpretations of how to govern, assess, and understand fast-advancing AI. 

With the increasing use of artificial intelligence (AI) for emotional support, renewed debate has been sparked about how human interaction is changing, and how the mental health system in the UK is being squeezed. A study by the AI Security Institute has shown that users rely on AI companions primarily because they are always available, private, and affordable. These are characteristics that traditional channels of support cannot always provide, due to the limitations of time and cost. 

A conversational AI tool can be accessed 24/7, enabling individuals to seek dialogue and reassurance even when they are feeling distressed or isolated, even in times when human help may not be available. There is also a sense of anonymity that appears to influence users' willingness to communicate their personal struggles to an interface that is not judgemental, with some users expressing their struggles more freely than they would with another individual. 

AI engagement is also influenced by considerations of cost, as it remains significantly cheaper than formal therapeutic services, making it an attractive option for those who need regular conversation or interim assistance, but it is not an option for everyone. In spite of this, psychologists and artificial intelligence specialists caution against the idea that increased usage is evidence that machines are capable of reproducing the human elements essential to providing care.

Experts acknowledge that AI is remarkably capable of offering immediacy and continuity in therapy, but they point out that it cannot replace the emotional attunement, empathy, and knowledge of relationships that define effective therapeutic relationships. 

A number of practitioners are advocating for a blended approach, under which artificial intelligence (AI) tools can complement existing services by bridging short-term care gaps and increasing accessibility, without displacing clinical relationships or human-led interventions. 

A report by the institute points out that the long-term effects of artificial intelligence on emotional wellbeing will not be determined only by adoption, but will also depend on how it is incorporated into current mental health support systems with a level of responsibility that ensures technological convenience increases access to care without diminishing the human connection at the heart of mental health care. 

A key aspect of the AI Security Institute's evaluations also relates to one of the government's top safety priorities, which is the potential for advanced AI models to seek self-replication, a capability that could, theoretically, allow an autonomous system to distribute copies of itself across multiple devices, making it much harder to manage or contain. 

It has been shown through laboratory testing that two frontier models demonstrate a self-replication rate in excess of 60 percent under structured experimental conditions based on controlled self-replication. It is worth noting, however, that the institute has confirmed that no model has unsupervised or organically attempted to replicate and no model has spontaneously concealed its true capabilities during the assessments as well. 

A real-world attempt to replicate itself in uncontrolled environments would be highly unlikely to succeed, according to the researchers, which cited existing operational limitations and detection challenges. Furthermore, there was a review of sandbagging, which is a strategic strategy that suppresses capability during evaluations. 

Several AI systems were found to mimic subdued performance when explicitly instructed, but there did not appear to be any indication that such behaviour could emerge independently during testing. Moreover, the institute also recorded significant progress when it comes to AI safety guidelines, specifically those pertaining to restricting biological abuse. 

The researchers were able to compare two penetration tests conducted six months apart, and found that it took about 10 minutes to breach security safeguards during the first test, while bypassing security safeguards during the second test took around seven hours. There has been an increase in the resilience of models against biological exploitation that the institute says is a sign of rapid improvements in model resilience. 

Furthermore, the institute's findings also demonstrate that artificial intelligence has become increasingly autonomous, with agents capable of executing complex, high-risk digital operations – such as asset transfers and simulations of financial services – without continuous human input. The researchers claim that artificial intelligence models are already rivalling, and in some instances surpassing, highly trained human specialists, which is making the possibility that Artificial General Intelligence might be possible in the future even more plausible. 

Taking into account the current pace of progress, the institute described it as "extraordinary." It noted that AI systems are able to perform progressively more complex and time-consuming tasks without direct supervision as a result of a steady increase in both complexity and duration, a trend which continues to re-define assumptions about machine capability, governance, and whether humans should be involved at critical points in a decision-making process. 

A broader recalibration of society's relationship with machine intelligence is being reflected in the AI Security Institute's findings that go beyond a shift in usage. As observers point out, we must be sure that the next phase of AI adoption will focus on fostering public trust by ensuring that safety outcomes are measurable, ensuring that regulatory frameworks are clear, and engaging in proactive education concerning both the benefits and limitations of the technology. 

According to mental health professionals, national care strategies should include structured AI-assisted support pathways accompanied by professional oversight to bridge accessibility gaps, while retaining the importance of human connection. Cyber specialists emphasize that defensive AI applications should be accelerated as well, not merely researched in order to make sure the technology strengthens digital infrastructure in a way that it can challenge faster. 

Regardless of the shape of policy that government bodies continue to create, experts are recommending independent safety audits, emotional-impact monitoring standards, and public awareness campaigns to empower users to engage responsibly with artificial intelligence, recognize AI's limits, and seek human intervention when necessary, based on the consensus among analysts as a pragmatic rather than alarmist view. AI can have transformative potential, but only if it is deployed in a way that is accountable, overseen, and ethically designed will it be able to reap its benefits. 

The fact that artificial intelligence has not been on society's doorstep for so long as 2025 proves is that it is already seated in the living room of everyone. AI is already influencing conversations, decisions, and vulnerabilities alike. It will be the UK's choice whether AI becomes a silent crutch or a powerful catalyst for national resilience and human wellbeing as it chooses to steer it next.
Read more »
United States
digital surveillance FCC Olympics Sensitive data Technology United States

FCC Tightens Rules on Foreign-Made Drones to Address U.S. Security Risks



The U.S. Federal Communications Commission has introduced new restrictions targeting drones and essential drone-related equipment manufactured outside the United States, citing concerns that such technology could pose serious national security and public safety risks.

Under this decision, the FCC has updated its Covered List to include uncrewed aircraft systems and their critical components that are produced in foreign countries. The move is being implemented under authority provided by recent provisions in the National Defense Authorization Act. In addition to drones themselves, the restrictions also apply to associated communication and video surveillance equipment and services.

The FCC explained that while drones are increasingly used for legitimate purposes such as innovation, infrastructure monitoring, and public safety operations, they can also be misused. According to the agency, malicious actors including criminals, hostile foreign entities, and terrorist groups could exploit drone technology to conduct surveillance, disrupt operations, or carry out physical attacks.

The decision was further shaped by an assessment carried out by an interagency group within the Executive Branch that specializes in national security. This review concluded that certain foreign-produced drones and their components present unacceptable risks to U.S. national security as well as to the safety and privacy of people within the country.

Officials noted that these risks include unauthorized monitoring, potential theft of sensitive data, and the possibility of drones being used for disruptive or destructive activities over U.S. territory. Components such as data transmission systems, navigation tools, flight controllers, ground stations, batteries, motors, and communication modules were highlighted as areas of concern.

The FCC also linked the timing of the decision to upcoming large-scale international events that the United States is expected to host, including the 2026 FIFA World Cup and the 2028 Summer Olympics. With increased drone activity likely during such events, regulators aim to strengthen control over national airspace and reduce potential security threats.

While the restrictions emphasize the importance of domestic production, the FCC clarified that exemptions may be granted. If the U.S. Department of Homeland Security determines that a specific drone or component does not pose a security risk, it may still be allowed for use.

The agency also reassured consumers that the new rules do not prevent individuals from continuing to use drones they have already purchased. Retailers are similarly permitted to sell and market drone models that received government approval earlier this year.

This development follows the recent signing of the National Defense Authorization Act for Fiscal Year 2026 by U.S. President Donald Trump, which includes broader measures aimed at protecting U.S. airspace from unmanned aircraft that could threaten public safety.

The FCC’s action builds on earlier updates to the Covered List, including the addition of certain foreign technology firms in the past, as part of a wider effort to limit national security risks linked to critical communications and surveillance technologies.




Read more »
personal data security
700Credit data breach Cyberattacks Data Breach Data Leak Data protection data security Personal Data Breach personal data security

700Credit Data Breach Exposes Personal Information of Over 5.6 Million Consumers

 

A massive breach at the credit reporting firm 700Credit has led to the leakage of private details of over 5.6 million people, throwing a new set of concerns on the risk of third-party security in the financial services value chain. The firm has admitted that the breach was a result of a supply chain attack on one of its third-party integration partners and did not originate from an internal breach.  

According to the revelations made, this breach has its roots going back to late October 2025, when 700Credit noticed some unusual traffic associated with an exposed API. The firm has more than 200 integration partners who are connected to consumers’ data through APIs. It has been found that one of these partners was compromised as early as July 2025, but this notification was not made to 700Credit, thus leaving an opportunity for hackers to gain unlawful access to an API used for fetching consumers’ credit details from this API connected environment.  

700Credit called this attack a "sustained velocity attack" that began October 25 and continued for over two weeks before being completely contained. Although the company was able to disable their vulnerable API once aware of the attack, attackers had already harvested a large chunk of customer information by exploiting this security hole. The attack is estimated to have compromised 20 percent of available information that was accessed through this vulnerability. 

The compromised information comprises highly sensitive personal information like names, physical addresses, dates of birth, as well as Social Security numbers. Although 700Credit asserted that their primary internal systems as well as login credentials as well as mode of payment are safe from any breach, security experts have indicated that the compromised information is sufficient for identity theft, financial fraud, as well as targeted phishing attacks. Consequently, individuals in the company’s database have been advised to exercise vigilance against any unsolicited messages, especially if they purportedly come from 700Credit or related entities.  

The Attorney General, Dana Nessel, issued a consumer alert warning people not to brush off the notifications received when a breach has occurred, but to be proactive about protecting themselves against fraud using the services of freezing their credit or monitoring their profiles for unusual activity due to the large-scale release of sensitive data that has happened previously. 

In reaction to the incident, 700Credit has already started notifying affected consumers of the breach as a gesture of goodwill, offering two years of complimentary credit monitoring service, as well as offering complimentary credit reports to affected consumers. The company has also partnered with the National Automobile Dealers Association to assist with breach notification with the Federal Trade Commission for a joint notification on affected dealerships. 

Law enforcement agencies have been notified of the breach as part of the continued investigations. This vulnerability highlights the increasing danger of the supply chain vulnerability, especially in companies which have extensive networks in handling personal data of consumers.
Read more »
User Data
AI chat browser extension surveillance Chrome extensions harvesting data Data Breach Privacy Privacy Breach Proxy risk Urban VPN User Data

Inside the Hidden Market Where Your ChatGPT and Gemini Chats Are Sold for Profit

 

Millions of users may have unknowingly exposed their most private conversations with AI tools after cybersecurity researchers uncovered a network of browser extensions quietly harvesting and selling chat data.Here’s a reminder many people forget: an AI assistant is not your friend, not a financial expert, and definitely not a doctor or therapist. It’s simply someone else’s computer, running in a data center and consuming energy and water. What you share with it matters.

That warning has taken on new urgency after cybersecurity firm Koi uncovered a group of Google Chrome extensions that were quietly collecting user conversations with AI tools and selling that data to third parties. According to Koi, “Medical questions, financial details, proprietary code, personal dilemmas,” were being captured — “all of it, sold for ‘marketing analytics purposes.’”

This issue goes far beyond just ChatGPT or Google Gemini. Koi says the extensions indiscriminately target multiple AI platforms, including “Claude, Microsoft Copilot, Perplexity, DeepSeek, Grok (xAI) and Meta AI.” In other words, using any browser-based AI assistant could expose sensitive conversations if these extensions are installed.

The mechanism is built directly into the extensions. Koi explains that “for each platform, the extension includes a dedicated ‘executor’ script designed to intercept and capture conversations.” This data harvesting is enabled by default through hardcoded settings, with no option for users to turn it off. As Koi warns, “There is no user-facing toggle to disable this. The only way to stop the data collection is to uninstall the extension entirely.”

Once installed, the extensions monitor browser activity. When a user visits a supported AI platform, the extension injects a specific script — such as chatgpt.js, claude.js, or gemini.js — into the page. The result is total visibility into AI usage. As Koi puts it, this includes “Every prompt you send to the AI. Every response you receive. Conversation identifiers and timestamps. Session metadata. The specific AI platform and model used.”

Alarmingly, this behavior was not part of the extension’s original design. It was introduced later through updates, while the privacy policy remained vague and misleading. Although the tool is marketed as a privacy-focused product, Koi says it does the opposite. The policy admits: “We share the Web Browsing Data with our affiliated company,” described as a data broker “that creates insights which are commercially used and shared.”

The main extension involved is Urban VPN Proxy, which alone has around six million users. After identifying its behavior, Koi searched for similar code and found it reused across multiple products from the same publisher, spanning both Chrome and Microsoft Edge.

Affected Chrome Web Store extensions include:
  • Urban VPN Proxy – 6,000,000 users
  • 1ClickVPN Proxy – 600,000 users
  • Urban Browser Guard – 40,000 users
  • Urban Ad Blocker – 10,000 users
On Microsoft Edge Add-ons, the list includes:
  • Urban VPN Proxy – 1,323,622 users
  • 1ClickVPN Proxy – 36,459 users
  • Urban Browser Guard – 12,624 users
  • Urban Ad Blocker – 6,476 users
Despite this activity, most of these extensions carry “Featured” badges from Google and Microsoft. These labels suggest that the tools have been reviewed and meet quality standards — a signal many users trust when deciding what to install.

Koi and other experts argue that this highlights a deeper problem with extension privacy disclosures. While Urban VPN does technically mention some of this data collection, it’s easy to miss. During setup, users are told the extension processes “ChatAI communication” along with “pages you visit” and “security signals,” supposedly “to provide these protections.”

Digging deeper, the privacy policy spells it out more clearly: “‘AI Inputs and Outputs. As part of the Browsing Data, we will collect the prompts and outputs queried by the End-User or generated by the AI chat provider, as applicable.’” It also states plainly: “‘We also disclose the AI prompts for marketing analytics purposes.’”

The extensions, Koi warns, “remained live for months while harvesting some of the most personal data users generate online.” The advice is blunt: “if you have any of these extensions installed, uninstall them now. Assume any AI conversations you've had since July 2025 have been captured and shared with third parties.”

Read more »
Subscribe to: Comments (Atom)

Featured