Public GitLab repositories exposed more than 17,000 secrets
28
Nov
2025

Public GitLab repositories exposed more than 17,000 secrets

After scanning all 5.6 million public repositories on GitLab Cloud, a security engineer discovered more than 17,000 exposed secrets across…

Gainsight Verifies Token Breach Linked to Salesforce Advisory, Issues New IOCs
28
Nov
2025

Gainsight Verifies Token Breach Linked to Salesforce Advisory, Issues New IOCs

Gainsight, the leading customer success platform, has confirmed that a security incident involving its Salesforce integration compromised customer tokens for…

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware
28
Nov
2025

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

Nov 28, 2025Ravie LakshmananSupply Chain Attack / Malware The North Korean threat actors behind the Contagious Interview campaign have continued…

French Football Federation Reports Data Breach
28
Nov
2025

French Football Federation Reports Data Breach

The French Football Federation (FFF) has confirmed a significant cybersecurity incident resulting in the theft of personal data belonging to…

Poland Arrests Suspected Russian Hacker Targeting Local Organizations’ Networks
28
Nov
2025

Poland Arrests Suspected Russian Hacker Targeting Local Organizations’ Networks

Polish authorities have made a significant move in their cybercrime enforcement efforts by detaining a Russian national suspected of conducting…

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages
28
Nov
2025

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

Nov 28, 2025Ravie LakshmananMalware / Vulnerability Cybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave…

French Football Federation
28
Nov
2025

French Football Federation discloses data breach after cyberattack

The French Football Federation (FFF) disclosed a data breach on Friday after attackers used a compromised account to gain access…

Cybercriminals Register 18,000 Holiday-Themed Domains to Launch Seasonal Scams
28
Nov
2025

Cybercriminals Register 18,000 Holiday-Themed Domains to Launch Seasonal Scams

The holiday season has always been a magnet for increased online activity, but 2025 marks a new high-water mark in…

Can business software empower rather than control workers?
28
Nov
2025

Can business software empower rather than control workers?

Acclaim Autism exists to help children with autism spectrum disorder, but before doing so, the Philadelphia-based company has to get…

GreyNoise launches free scanner to check if you
28
Nov
2025

GreyNoise launches free scanner to check if you’re part of a botnet

GreyNoise Labs has launched a free tool called GreyNoise IP Check that lets users check if their IP address has…

AI
28
Nov
2025

Malicious LLMs empower inexperienced hackers with advanced tools

Unrestricted large language models (LLMs) like WormGPT 4 and KawaiiGPT are improving their capabilities to generate malicious code, delivering functional…

CVSS logo
28
Nov
2025

How CVSS v4.0 works: characterizing and scoring vulnerabilities

The Common Vulnerability Scoring System (CVSS) provides software developers, testers, and security and IT professionals with a standardized way to…