Russian malware known as Spypress is exploiting vulnerabilities in webmail services to spy on Ukrainian users, particularly targeting Gmail and Yahoo accounts. The malware facilitates unauthorized access to sensitive information, raising significant security concerns amid ongoing conflict.

A new variant of spyware called Stealerium automates sextortion by detecting when users browse pornography, capturing screenshots and webcam images to blackmail victims. Researchers at Proofpoint revealed that this malware, available as open-source on GitHub, enhances traditional infostealer functions by adding a layer of privacy invasion and humiliation. The malware has been linked to multiple cybercriminal campaigns since May.

A researcher discovered 57 Chrome extensions, used by 6 million users, that contain risky capabilities such as monitoring browsing behavior and accessing sensitive cookies. While some have been removed from the Chrome Web Store, others remain, and users are advised to uninstall them and reset their passwords as a precaution.