Cybersecurity researchers have uncovered a scheme involving fraudulent websites hosted on new domains that deliver a notorious Android malware, SpyNote. The illegitimate sites imitate Google Play Store pages to trick users into downloading the malware. This technique is attributed to a threat actor known as GoldFactory, and the malware, which can extract sensitive data, has been adopted by state-sponsored hacking groups. Research also suggests similar tactics are used to target the Uyghur, Taiwanese, and Tibetan communities.
ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware
ASUS has disclosed a critical security flaw (CVE-2025-2492, CVSS score 9.2/10) in routers with AiCloud enabled, which could allow remote attackers to perform unauthorized actions.
