The FireScam malware targets Android devices, disguising itself as a false “Telegram Premium” app. FireScam collects sensitive data, monitoring device activity and using legitimate services to bypass detection. This reveals growing sophistication in mobile malware, highlighting the need for robust API security and real-time threat detection. FireScam poses a significant risk to corporate systems and sensitive information, demonstrating the importance of securing endpoints and verifying app sources.

Bitdefender GravityZone Console Flaw Let Attackers Execute Arbitrary Commands
A critical vulnerability (CVE-2025-2244) in Bitdefender GravityZone Console, with a CVSS score of 9.5, allows remote attackers to execute arbitrary commands due to insecure PHP