Infected Red Hat npm packages expose developer credentials
The campaign, which Wiz researchers are tracking as Miasma, is thought to be the latest evolution of Shai-Hulud, a self-propagating malware family that has repeatedly…
Latest Cybersecurity News — Page 109
View all →
LABScon25 Replay | Gamaredon x Turla: Unveiling a 2025 Espionage Alliance Targeting Ukraine
In this LABScon 25 presentation, ESET researchers Matthieu Faou and Zoltán Rusnák present the first technical evidence that Gamaredon actively facilitated Turla’s access to high-value…
Discovering a Ransomware Remedy in the Wild
Within the ThreatOps department at Huntress, we actively hunt for malware and adversary activity. We look for persistent footholds: the tell-tale sign and smoking gun…
CISA flags two-year-old Oracle flaw as actively exploited in attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was…
CISA Warns of Oracle WebLogic Server Vulnerability Exploited in Attacks
CISA has issued a fresh warning highlighting active exploitation of a critical Oracle WebLogic Server vulnerability, tracked as CVE-2024-21182, adding it to its Known Exploited…
The Manhattan Institute Helped Kill DEI. Now It’s Coming for Protests
A right-wing think tank responsible for the emergence of zero-tolerance policing in 1990s New York City and the Trump administration’s scorched-earth campaign against “diversity, equality…
Stolen Gemini API Keys Fuel Automated Telegram Influence Campaign
A long-running Telegram influence and fraud campaign where a solo threat actor leveraged stolen Google Gemini API keys and jailbroken AI to automate content generation,…
New WordPress Malware Uses Steam Profile Comments to Hide C2 Instructions
A new WordPress malware campaign has been found using an unusual hiding place for its command instructions: Steam Community profile comments. According to research published…
ESPN Journalist Dan Wetzel On Matt Weiss Hacking Allegations
02 Jun ESPN Journalist Dan Wetzel On Matt Weiss Hacking Allegations Posted at 08:55h in Blogs by Taylor Fox This week in cybersecurity from the…
Noma brings visibility and access governance to AI agents and MCP servers
Noma has announced the launch of Noma Agent Access Control, which helps security teams discover, govern, and enforce access policies for AI agents and Model…
23andMe exposed genetic information of millions, lawsuit says
California has sued the former shell of DNA testing company 23andMe over alleged security failures and misleading statements surrounding its 2023 data breach. On May…
AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It.
AI-driven exploitation timelines are rapidly shrinking, and they are not going to stop shrinking. Vulnerabilities are being discovered, reproduced, and weaponized faster than ever in…