ShinyHunters Leaks Data of Udemy, Zara, 7-Eleven in Salesforce Linked Breach
A series of new data leak listings posted on a dark web site linked to the ShinyHunters hacker group has put three well-known companies in…
Author: Cybernoz
PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks
A pro-Ukrainian hacktivist group called PhantomCore has been attributed to attacks actively targeting servers running TrueConf video conferencing software in Russia since September 2025. That’s…
Why AI is forcing a reset of the identity stack
Identity and access management (IAM) is no longer a back-office security control. In an AI-driven world, it is fast becoming the control plane for how…
Woolworths gives agentic-powered Olive chatbot to its 200,000 staff
Woolworths has gone live with an agentic AI-augmented version of its Olive chatbot to its 200,000-plus staff, and revealed how it is keeping the agentic…
Malicious AI Prompt Injection Attacks Increasing, but Sophistication Still Low: Google
Google has analyzed AI indirect prompt injection attempts involving sites on the public web and noticed an increase in malicious attacks over the past months,…
LINKEDIN BROWSERGATE
LINKEDIN BROWSERGATE Pierluigi Paganini April 27, 2026 BrowserGate claims LinkedIn secretly fingerprints users via extensions and device data, sending encrypted results to third parties for…
Supreme Court justices skeptically question both sides in geofence surveillance case
Supreme Court justices lobbed sharp questions at both sides about the constitutionality of geofence warrants during oral arguments Monday in a case that could have…
Editorial | Online privacy guidelines underscore key role of parents and teachers
The growing use of social media and artificial intelligence chatbots across generations has made privacy protection a priority. This is especially important for children who…
The ‘manager of agents’: How AI evolves the SOC analyst role
What works is a progression. Start with limited, high-confidence use cases. Provide full transparency into how the system reaches its conclusions. Let analysts validate outcomes…
Open source package with 1 million monthly downloads stole user credentials
The developers are urging all developers who installed version 0.23.3 to take the following steps immediately: 1. Check your installed version: pip show elementary-data |…
Unified EDR + ITDR: Closing the Identity Gap Before Attacks Spread
One incident. No gap. Last week, something happened in a customer environment that neatly captures where identity security is headed. And where it’s been falling…
GlassWorm malware attacks return via 73 OpenVSX “sleeper” extensions
A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 “sleeper” extensions that turn malicious after an update. Six of the…