SonicWall Urges Immediate Patching of Firewall Vulnerabilities
SonicWall on Wednesday rolled out fixes for three SonicOS vulnerabilities, urging customers to immediately patch their Gen 6, Gen 7, and Gen 8 firewalls. “These…
Category: SecurityWeek
AI Fuels ‘Industrial’ Cybercrime as Time-to-Exploit Shrinks to Hours
Industrialized cybercrime now delivers attacks with greater scale, speed and success. Defenders must match this with a similar use of AI and automation. The industrialization…
Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge
Mythos in the hands of attackers threatens a storm beyond the power of security teams to weather. Claude Security is designed to counter this. Anthropic’s…
SAP NPM Packages Targeted in Supply Chain Attack
Four SAP NPM packages have been injected with malicious code as part of a new supply chain attack, security researchers warn. The campaign, referred to…
Sandhills Medical Says Ransomware Breach Affects 170,000
South Carolina-based healthcare provider Sandhills Medical Foundation has disclosed a data breach affecting nearly 170,000 individuals. Sandhills Medical said in a data security incident notice…
Iranian Cyber Group Handala Targets US Troops in Bahrain
The Iran-linked threat actor Handala this week targeted US troops in Bahrain in an influence campaign carried out on WhatsApp. The messages, signed Handala and…
Checkmarx Confirms Data Stolen in Supply Chain Attack
Checkmarx on Tuesday confirmed that last month’s supply chain attack targeting its KICS open source project also resulted in data theft. The compromise was a…
Hundreds of Internet-Facing VNC Servers Expose ICS/OT
Millions of remote access RDP and VNC servers are exposed to the internet, and hundreds of them may provide access to industrial control systems (ICS)…
Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure
A critical-severity vulnerability in the open source AI gateway LiteLLM was exploited days after public disclosure to access database tables containing sensitive information, Sysdig reports.…
38 Vulnerabilities Found in OpenEMR Medical Software
Dozens of vulnerabilities, including critical issues that can be exploited to steal sensitive patient information, were discovered recently in the open source electronic medical records…
The Mythos Moment: Enterprises Must Fight Agents with Agents
When Anthropic introduced its Claude Mythos Preview, it realized the enormous cyber risk it posed and decided it was too dangerous for public release. The…
Vimeo Confirms User and Customer Data Breach
Video hosting platform Vimeo has confirmed that hackers have stolen user and customer data following an attack involving a third-party vendor. According to Vimeo, hackers…