Shadow Escape 0-Click Attack in AI Assistants Puts Trillions of Records at Risk
A new security, dubbed Shadow Escape, is creating major concerns after a report from the research firm Operant AI revealed an unseen risk to consumer…
Latest Cybersecurity News — Page 1205
View all →
Thousands of online stores at risk as SessionReaper attacks spread
Early September, a security researcher uncovered a new vulnerability in Magento, an open-source e-commerce platform used by thousands of online retailers, and its commercial counterpart…
New York updates third-party risk guidance, adds AI provisions
The New York Department of Financial Services published updates this week to longstanding industry guidance that urges financial services companies to closely watch their third-party…
Microsoft disables File Explorer preview for downloads to block attacks
Microsoft says that the File Explorer (formerly Windows Explorer) now automatically blocks previews for files downloaded from the Internet to block credential theft attacks via…
TransparentTribe Targets Linux Systems in Indian Military to Deploy DeskRAT
In July 2025, cybersecurity firm CYFIRMA uncovered an active phishing campaign targeting Linux-based operating systems used by Indian government and military organisations. This operation, attributed…
Abu Dhabi bets on autonomous racing to accelerate AI and mobility innovation
Abu Dhabi is turning racetracks into laboratories – on the Yas Marina circuit, better known for hosting Formula One, the Autonomous Racing League (A2RL) is…
CISA warns of Lanscope Endpoint Manager flaw exploited in attacks
The Cybersecurity & Infrastructure Security Agency (CISA) is warning that hackers are exploiting a critical vulnerability in the Motex Landscope Endpoint Manager. The flaw is…
Perplexity’s Comet Browser Screenshot Feature Vulnerability Let Attackers Inject Malicious Prompts
A new vulnerability in Perplexity’s Comet AI browser allows attackers to inject malicious prompts through seemingly innocuous screenshots. Disclosed on October 21, 2025, this flaw…
Jira Vulnerability Lets Attackers Alter Files Accessible to the Jira JVM Process
Atlassian has disclosed a critical path traversal vulnerability affecting Jira Software Data Center and Server that could allow authenticated attackers to modify files accessible to…
North Korean Hackers Lure Defense Engineers With Fake Jobs to Steal Drone Secrets
Oct 23, 2025Ravie LakshmananCyber Espionage / Threat Intelligence Threat actors with ties to North Korea have been attributed to a new wave of attacks targeting…
Burned-out security leaders view AI as double-edged sword
Dive Brief: Overwhelmed cybersecurity executives hope AI can help them avoid missing signs of intrusions, even as they remain wary of the technology’s potential risks,…
Hackers Exploited Samsung Galaxy S25 0-Day Vulnerability to Enable Camera and Track Location
At Pwn2Own Ireland 2025, cybersecurity researchers Ben R. and Georgi G. from Interrupt Labs showcased an impressive achievement by successfully exploiting a zero-day vulnerability in…