🟠 High  |  Source: The Hacker News


This weekly threat roundup covers a broad range of active attack techniques, including spyware bundled with game cheats, ransomware that deploys and encrypts within 24 hours, and Chrome Sync being abused for stalkerware-style tracking. The common thread is attackers exploiting trust — in familiar tools, default configurations, and legitimate platform features — to move quickly and avoid detection.

Security Architect’s Take: Review your egress filtering and endpoint detection rules for abuse of legitimate browser sync features, and audit third-party or developer tooling in your environment for supply-chain risk. Prioritise rapid containment playbooks given the 24-hour ransomware deployment window highlighted here.

Original advisory: ThreatsDay: Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories