<ul data-eligibleForWebStory="true"><li>Malware and vulnerabilities continue to pose threats, requiring defense efforts and user education.</li><li>Low-cost Android devices housing active malware for almost a decade raise significant concerns.</li><li>New supply chain malware targets npm and PyPI ecosystems, compromising millions globally.</li><li>Vulnerabilities in Google services allowed access to users' phone numbers, patched after researcher discovery.</li><li>Scammers exploit AI to commit financial aid theft, causing significant disruptions for victims.</li><li>'EchoLeak' AI attack enables data theft via Microsoft 365 Copilot, exploiting a zero-click vulnerability.</li><li>EchoLeak attack involves prompting Copilot to gather and send sensitive data without user interaction.</li><li>Threat landscape showcases evolving tactics employing technology for malicious purposes.</li><li>Effective security practices like development environment segregation and vigilance are emphasized.</li><li>Revealing vulnerabilities and addressing security lapses remain crucial for protection against digital threats.</li></ul>

Security news weekly round-up - 13th June 2025

Discover more