1. Malicious Chrome Extensions Disguised as AI Tools
Security researchers have uncovered at least 30 malicious Google Chrome extensions posing as AI assistants and tools. These extensions have been installed by hundreds of thousands of users and are capable of stealthily collecting sensitive data, including email content, passwords, and browsing activity, by loading remote code and exfiltrating what you type or view in the browser. Users are urged to remove suspicious extensions immediately and reset any potentially exposed accounts.
2. Nation-State Threat Actors Abusing AI Platforms
Google’s threat intelligence teams warn that government-backed hackers from countries like China, North Korea, Iran, and Russia are increasingly leveraging powerful AI tools, including Google’s Gemini large language model, to enhance cyberattack capabilities—from automated reconnaissance and vulnerability analysis to generating highly targeted phishing lures and malicious code.
3. New Malware from World Leaks (RustyRocket)
Data extortion group World Leaks is reportedly deploying a new malware strain known as RustyRocket as part of their operations. This tool adds another layer of complexity and danger to ransomware-style attacks where data is stolen and used to pressure victims into paying.
4. Major Healthcare Provider Data Breach
An Atlanta-based healthcare provider disclosed a breach affecting over 625,000 individuals, exposing personal and health information. These large-scale breaches highlight continued risk to sensitive data in sectors like healthcare.
5. Long-standing iOS Zero-Day Finally Patched
Apple has patched a zero-day vulnerability in iOS that dates back to early versions of the operating system. This flaw was reportedly being actively exploited in the wild, underlining the importance of keeping devices updated promptly.
6. Federal Cybersecurity at Risk from Budget Issues
Analysts warn that a potential government shutdown could result in the furlough of more than half of the staff at the Cybersecurity and Infrastructure Security Agency (CISA)—hampering national cyber defense and threat response capabilities.
7. Arrest of JokerOTP Phishing Tool Seller
Dutch law enforcement has arrested the alleged seller of JokerOTP, a phishing automation tool that captures multi-factor authentication (MFA) passcodes. This reflects ongoing efforts by authorities to disrupt commercialization of advanced phishing tools.
8. Valentine’s Day Romance Scams & AI-Fueled Social Engineering
Security specialists are warning about evolving romance scams ahead of Valentine’s Day, where scammers leverage psychological tactics and even AI-generated personas and fabricated images (like filters) to gain trust and defraud victims. Awareness and skepticism toward unexpected romantic outreach remain crucial defenses.
