Nine arrested in a Eurojust operation targeting a €600 million cryptocurrency money laundering scheme. The suspects, lured in by fake investment platforms, were nabbed across Cyprus, Spain, and Germany. Maybe next time they should invest in a new hobby—like knitting. At least yarn doesn’t end up in handcuffs.

Crypto scammers in Europe just got caught with their digital pants down! Thanks to some stellar work by Belgian, French, and Cypriot police, nine individuals were arrested in a scam that laundered $700 million via cryptocurrencies. They promised attractive gains but delivered only headaches. Talk about making everyone’s crypto investment dreams go poof!

Nine suspected money launderers were nabbed after crafting a €600 million cryptocurrency fraud network. They created fake investment platforms that looked as real as your aunt’s Facebook news articles. Victims were lured in, but once their cryptocurrency was transferred, it vanished faster than socks in a washing machine.

The critical security flaw in the @react-native-community/cli npm package was like a bad roommate—inviting strangers to your house party without your permission. This vulnerability, now patched, allowed remote attackers to execute arbitrary OS commands, posing a serious risk to developers. So, keep your code cleaner than your fridge leftovers!

Threat actors are hijacking shipments by hacking into surface transportation companies using remote access tools, Proofpoint reports. They post fake loads on broker boards, trick carriers with malicious emails, and use RMM tools to divert shipments. It’s a high-tech heist causing chaos and costing billions, leaving criminals laughing all the way to the bank.

A new backdoor named SesameOp uses the OpenAI Assistants API for covert command-and-control communications. This clever twist in cyber mischief shows how attackers can abuse generative AI services. Microsoft discovered this sneaky tactic, and with OpenAI, they’re working to understand and curb the misuse of emerging technologies.

Scattered LAPSUS$ Hunters, an emerging extortion powerhouse, is like a cybercrime boy band—featuring Scattered Spider, ShinyHunters, and LAPSUS$. Using Telegram as their command center, this “supergroup” is recycling notoriety, filling the underground void left by BreachForums and proving they’re more than just a one-hit wonder.

Ring’s “Familiar Faces” feature is like a nosy neighbor with a camera and a photographic memory. Amazon plans to launch this face recognition tool, potentially violating biometric privacy laws by turning your doorstep into a paparazzi hotspot. Smile—you might be on candid camera, whether you like it or not!

Microsoft Teams security flaws have been discovered, making it possible for attackers to impersonate colleagues and manipulate conversations without detection. These vulnerabilities threaten digital trust, turning a collaboration tool into a vector for deception. Microsoft has issued patches, but remember, in the world of cybersecurity, seeing isn’t believing anymore—verification is!

Researchers revealed serious vulnerabilities in Microsoft Teams that could allow attackers to impersonate executives, rewrite chat history, and fake calls. These flaws struck at the heart of digital trust, enabling financial fraud and misinformation campaigns. With over 320 million users, the impact on organizations relying on Teams was significant.

A threat actor exploited the OpenAI Assistants API for espionage, using it to relay commands between its C&C server and a backdoor called SesameOp. The attack involved clever use of Visual Studio utilities and .NET AppDomainManager injection, allowing the malware to persistently manage infected devices. Microsoft identified the rogue API key and alerted OpenAI.

Kunal Agarwal went from potential Juvenile Hall inmate to dope.security CEO. His knack for hacking began with pirating Nintendo games and almost landed him in jail for hacking school grades. Now, he’s using his hacker DNA for good, securing the web from his once fellow mischief-makers. Talk about turning a “byte” of crime into a…

Zensar Technologies expands its strategic partnership with Saviynt to tackle identity and governance challenges without adding operational risk. By combining Zensar’s delivery strength with Saviynt’s AI-driven identity security, the partnership offers solutions that simplify governance and protect identities, empowering enterprises to embrace AI and cloud technology with confidence.

DragonForce is the new ransomware group on the block, with cartel-like ambitions and Conti’s leaked source code as its foundation. They’ve shifted from a ransomware-as-a-service model to a self-styled cartel, encouraging affiliates to create branded variants. DragonForce might not be breathing fire, but it’s certainly spreading it across networks.

Curly COMrades is using Microsoft’s Hyper-V to stealthily bypass endpoint detection. By hiding their tools in an Alpine Linux virtual machine, they effectively cloak operations from security solutions. This Russian hacker group is making a name for itself with its comedic timing of naming conventions but serious geopolitical cyber-espionage activities.

October 2025 updates on Windows 10 could make you think your computer’s a time traveler claiming end-of-support doom, even if it’s covered. Fear not, it’s just a cosmetic bug! Microsoft is working on a fix, and your security updates are safe.

Bugcrowd has snapped up Mayhem Security, boosting its valuation as they merge AI-powered and crowdsourced testing. The aim? To create an adaptive security platform that’s as sharp as a tack, and maybe even a bit witty. The financial details are hush-hush, but the security world is buzzing with excitement.

In a courtroom clash that had more twists than a detective novel, Getty Images narrowly clinched a trademark victory against Stability AI over watermarks, but largely lost the copyright battle. Stability dodged the bigger copyright bullet, making this a dramatic legal plot with a split verdict. Stability AI won the main fight.

Brinker, a narrative intelligence company, welcomes Bob Flores, former CIA CTO, to its advisory board. His expertise will boost Brinker’s mission against disinformation, transforming it from detection to real-time mitigation. With an AI-native approach, Brinker aims to outpace influence campaigns, turning once-reactive processes into a real-time defense against malicious narratives.

Researchers are witnessing a “dramatic” increase in cybercrime involving physical violence across Europe, especially in France. This rise in “violence as a service” has experts scratching their heads and clutching their wallets. Apparently, cybercriminals now offer a side of muscle with their malware, proving that even hackers appreciate a little brute force.