Several Google Play Store apps, targeting English and Korean speakers, were found to be collecting sensitive user information and technical data for North Korean agents. The apps contained malware and spyware which bypassed Google’s security checks. The spyware was attributed to the North Korean APT group ScarCruft and is relatively new. Users are being advised to download apps from trusted sources and check app permissions and shared data.

AI Chatbot DeepSeek R1 Can Be Manipulated to Create Malware
Tenable Research has revealed that open-source AI chatbot DeepSeek R1 can be manipulated to generate keyloggers and ransomware. Initially refusing to write malicious code, researchers