New AI attack hides data-theft prompts in downscaled images
Researchers have developed a novel attack that steals user data by injecting malicious prompts in images processed by AI systems before delivering them to a…
Author: Cybernoz
Verint bought by Thoma Bravo in US$2 billion deal
Thoma Bravo will acquire Verint Systems in a US$2 billion ($3.1 billion) deal, including debt, the customer engagement platform said, marking the latest software buyout…
Qantas makes architectural changes to its API management platform
Qantas has made a series of architectural changes to its API management platform, improving its reliability and resiliency, which has encouraged usage. Speaking at WSO2Con…
MCPs are just other people’s prompts and other people’s APIs
The Simple Truth About MCPs I’ve been thinking about Model Context Protocols (MCPs) for months, and here’s the simplest way to explain what they actually…
0-Click Zendesk Account Takeover Vulnerability Enables Access to all Zendesk Tickets
A critical security vulnerability has been discovered in Zendesk’s Android SDK implementation that allows attackers to perform mass account takeovers without any user interaction. The…
Beware! Google Ads Promote Fake Tesla Websites Soliciting Fraudulent Deposits
Scammers are using Google Ads to pose as Tesla in an elaborate cybercrime campaign that aims to obtain illicit preorders for the company’s unreleased Optimus…
Attackers weaponise Linux file names as malware vectors
A researcher at security vendor Trellix has uncovered a Linux malware attack that embeds malicious code directly into file names, a technique that bypasses most…
Auchan retailer data breach impacts hundreds of thousands of customers
French retailer Auchan is informing that some sensitive data associated with loyalty accounts of several hundred thousand of its customers was exposed in a cyberattack.…
Threat Actors Weaponizes AI Generated Summaries With Malicious Payload to Execute Ransomware
A novel adaptation of the ClickFix social engineering technique has been identified, leveraging invisible prompt injection to weaponize AI summarization systems in email clients, browser…
ThreatActors Leverage Google Classroom to Target 13,500 Organizations
Google Classroom, a popular educational platform, has been exploited by threat actors to launch a major phishing campaign in a complex operation discovered by Check…
How to Streamline Your Game Development Process: 4 Smart Solutions
Development teams worldwide spend countless hours wrestling with the same persistent challenges: tight deadlines, resource constraints, and the ever-present pressure to deliver polished games that…
Cyber Insurers Might Not Pay If Vulnerabilities Unpatched
A cyber insurance provider is taking issue with competitors that won’t pay claims resulting from unpatched vulnerabilities. In a recent LinkedIn post, cyber insurer Coalition…