Hackers posing as IT support are targeting employees at large companies to sneak into their Salesforce systems and steal data. They start with a phone call, pretending to help with a routine issue. The real goal? To get the employee to connect to a fake version of Salesforce’s Data Loader tool. Once that happens, the attackers can quietly grab sensitive company data.
Google’s Threat Intelligence Group has been tracking the group behind this, known as UNC6040. Their method depends on trust—posing as helpful support staff and guiding employees through what feels like a normal setup process. Because the tool is something many employees already use, it doesn’t seem suspicious. [Read more…]
Gmail users on Android and iOS are about to see a lot more AI, whether they ask for it or not. Google has started rolling out a new update that automatically generates summaries for emails in the mobile app. The summaries, powered by Gemini, will show up at the top of the message view—no tapping required.
Researchers have uncovered a batch of malicious packages in the NPM repo that quietly racked up over 6,000 downloads before anyone noticed. These weren’t your typical cryptominers or info-stealers. They were designed to crash systems, wipe files, and corrupt data—sometimes all at once.
The crew behind the 3AM strain of ransomware has been hitting companies using a familiar playbook: flood the target with junk emails, follow up with a fake IT call, and convince someone to hand over remote access. It’s not new, but it still works. Probably more than it should.
Google is moving full steam ahead with AI integration in Search, whether users are ready for it or not. After a rocky debut last year, its AI Overviews have returned with a new feature in tow: AI Mode. Live for U.S. users following the company’s 2025 I/O event, this new tab aims to radically alter how people interact with search results.