@CandidTodayTech profile picture
Candid.Technology @CandidTodayTech

We make tech simpler for people; Follow us on Google News: news.google.com/publications…

Joined December 2017
  • Tweets 4,700
  • Following 12
  • Followers 1,962
2,541 Photos and videos
Sophisticated Android spyware KoSpy, linked to North Korean hacking group ScarCruft (APT37), has targeted users in South Korea, Japan, India, Russia, and the Middle East since March 2022. Read more here: candid.technology/dprk-kospy… #KoSpy #NorthKorea #InfoSec

DPRK's KoSpy spyware targets SK, India, Russia, and Middle East

Sophisticated Android spyware KoSpy, linked to DPRK's ScarCruft (APT37), has targeted users in South Korea, Japan, India, Russia.

candid.technology
170
Google tightens Chrome extension affiliate advertising policies following controversy over PayPal's Honey extension, which allegedly manipulated affiliate links to collect commissions from already-paid influencer promotions. candid.technology/google-chr… #HoneyScam #ChromeExtension

Google updates Chrome Extension policy after Honey faces scrutiny

Google tightens Chrome extension affiliate advertising policies following controversy over PayPal's Honey, which allegedly manipulated affiliate links.

candid.technology
1
100
Apple releases critical security update for iPhones and iPads to patch zero-day vulnerability CVE-2025-24201 in WebKit, which powers Safari and all iOS browsers, amid reports of sophisticated active exploitation. candid.technology/apple-patc… #ZeroDay #Apple #iPad

Apple patches critical zero-day exploit targeting iPhones and iPads

Apple releases critical security update for iPhones and iPads to patch zero-day vulnerability CVE-2025-24201 in WebKit, which powers Safari.

candid.technology
125
Nasdaq-listed cryptocurrency exchange Coinbase (COIN) secures registration with the Financial Intelligence Unit (FIU) as part of its strategy to resume full-scale trading in India. More details here: candid.technology/coinbase-s… #Coinbase #India

Coinbase secures FIU registration, confirms re-entry in India

Nasdaq-listed cryptocurrency exchange Coinbase (COIN) secures registration with the FIU as part of its strategy to resume operations in India.

candid.technology
1
53
Indian government successfully rescues 283 nationals who were deceived by false job offers in Southeast Asia and forced into cybercrime operations, coordinating their evacuation from Thailand. Read more here: candid.technology/283-indian… #Scam #Phishing

India rescues 283 nationals trapped in cybercrime rackets in Southeast Asia

Indian government successfully rescues 283 nationals who were deceived by false job offers in Southeast Asia and forced into cybercrime.

candid.technology
36
Reliance Industries' Jio Platforms partners with Elon Musk's SpaceX to bring Starlink satellite internet to India, following Airtel's similar move. More details here: candid.technology/jio-starli… #Jio #Starlink #ElonMusk

Jio partners with SpaceX to bring Starlink to India

Reliance Industries' Jio Platforms partners with Elon Musk's SpaceX to bring Starlink satellite internet to India, following Airtel's similar move.

candid.technology
67
Nasdaq-listed cryptocurrency exchange Coinbase (COIN) secures registration with the Financial Intelligence Unit (FIU) as part of its strategy to resume full-scale trading operations in the Indian market. candid.technology/coinbase-s… #Coinbase #Crypto #India

Coinbase secures FIU registration, confirms re-entry in India

Nasdaq-listed cryptocurrency exchange Coinbase (COIN) secures registration with the FIU as part of its strategy to resume operations in India.

candid.technology
45
North Korea's Lazarus Group infiltrates npm with six malicious packages including is-buffer-validator and react-event-dependency, designed to compromise developer environments, steal credentials, and extract cryptocurrency. candid.technology/lazarus-gr… #LazarusGroup #NPM

Lazarus Group targets npm ecosystem with 6 malicious packages

North Korea's Lazarus Group infiltrates npm with six malicious packages including is-buffer-validator and react-event-dependency.

candid.technology
2
37
Delhi Police arrests four scammers who extorted Rs 44.50 lakh from a victim by impersonating CBI officials in a sophisticated digital arrest scheme targeting unsuspecting citizens. More details here: candid.technology/delhi-poli… #DigitalArrests #InfoSec

Delhi Police arrests four in Rs 44.50 lakh digital arrest scam

Delhi Police arrests four scammers who extorted Rs 44.50 lakh from a victim by impersonating CBI officials in a sophisticated digital arrest scheme

candid.technology
31
Major brands including JioHotstar, Louis Vuitton, and Tata Solar fight legal battles against fraudulent websites impersonating their brands, which deceive consumers, compromise data security, and damage corporate reputations. candid.technology/jiohotstar… #InfoSec #JioHotstar

JioHotstar, LV, Warner Bros, and others fight copycat websites surge

Major brands including JioHotstar, Louis Vuitton, and Tata Solar fight legal battles against fraudulent websites impersonating their brands.

candid.technology
1
50
Cryptocurrency users face sophisticated phishing attacks disguised as Binance emails offering free Trump coins, which instead install ConnectWise RAT malware, giving hackers complete device control within minutes. candid.technology/fake-trump… #ConnectWise #TrumpCoins #InfoSec

Fake Trump cryptocurrency Binance email scam installs ConnectWise RAT

Cryptocurrency users face phishing attacks disguised as Binance emails offering free Trump coins, which instead install ConnectWise RAT malware

candid.technology
45
Microsoft's TTD framework contains four critical CPU instruction emulation flaws that could compromise security, produce unreliable debugging results, and mislead forensic investigations when analysing Windows applications. candid.technology/critical-f… #TTD #InfoSec #Microsoft

Four bugs expose critical flaws in Microsoft's TTD

Microsoft's Time Travel Debugging framework contains four critical CPU instruction emulation flaws that could compromise security.

candid.technology
34
Cybercriminals create fake DeepSeek websites like deepseek-pc-ai[.]com to trick users into downloading malware disguised as an official AI client, exploiting the fact that no legitimate DeepSeek desktop application actually exists. candid.technology/cybercrimi… #DeepSeek #Malware

Cybercriminals use fake DeepSeek sites to hijack Windows PCs

Cybercriminals create fake DeepSeek websites like deepseek-pc-ai[.]com to trick users into downloading malware disguised as an official AI client.

candid.technology
1
19
Ex-policy director Sarah Wynn-Williams alleges Meta offered content oversight to the Chinese Communist Party and suppressed political dissent in exchange for market access. More details here: candid.technology/whistleblo… #Meta #CCP

Whistleblower alleges Meta suppressed dissident for China access

Meta offered content oversight to the CCP and suppressed political dissent in exchange for Chinese market access.

candid.technology
86
North Korean hacking group Moonstone Sleet has begun deploying Qilin ransomware since February, marking their first use of a Ransomware-as-a-Service. More details here: candid.technology/north-kore… #MoonstoneSleet #NorthKorea #Hack

North Korean hackers deploy Qilin ransomware in new attacks

North Korean hacking group Moonstone Sleet has begun deploying Qilin ransomware since February, marking their first use of a RaaS product.

candid.technology
57
Storm-0408's massive malvertising campaign has infected nearly one million devices globally by using illegal streaming sites to redirect users through malicious websites to GitHub-hosted malware payloads. candid.technology/massive-ma… #Malware #InfoSec

Massive malvertising campaign exploits GitHub to deploy multi-stage malware

Massive malvertising campaign has infected nearly 1M devices by using illegal streaming sites to redirect users to malicious GitHub repositories.

candid.technology
1
52
Malicious Python package 'set_utils' targets blockchain projects, secretly stealing private keys while posing as a harmless utility library. More details here: candid.technology/malicious-… #Python #Ethereum

Malicious PyPI 'set_utils' steals Ethereum private keys

Malicious Python package 'set_utils' targets blockchain projects, secretly stealing private keys while posing as a harmless utility library.

candid.technology
20
Brazil's Federal Regional Court reinstates injunction against Apple, requiring the tech giant to allow alternative app stores on iOS within 90 days. More details here: candid.technology/apple-orde… #iOS #Apple #Brazil

Apple ordered to open iOS to third-party app stores in Brazil

Brazil's Federal Regional Court reinstates injunction against Apple, requiring the tech giant to allow alternative app stores on iOS within 90 days.

candid.technology
21
Albion Online forum users were targeted by a Russian phishing campaign pretending to be a security alert from the Electric Frontier Foundation. candid.technology/albion-onl… #Phishing

Albion Online forum users targeted in EFF-themed phishing scan

Russian hackers target Albion Online gamers with fake EFF security warnings, tricking users into downloading Steal and Pyramid C2 malware.

candid.technology
37
Google's AI faced 258 reports of extremist content and 86 CSAM reports in 10 months, while major tech platforms show inadequate measures against harmful AI-generated content. More details here: candid.technology/gemini-fla… #CSAM #Gemini #AI

Gemini flagged for extremist and CSAM content, tech platforms fail content moderation

Gemini faced 258 reports of extremist content and 86 CSAM reports, while major platforms show inadequate measures against harmful AI content.

candid.technology
52
Load more