Cyber Attack
GlassWorm Malware Uses Solana Dead Drops to Steal Crypto and Browser Data
Cybersecurity researchers at Aikido said the GlassWorm campaign has grown into a multi stage malware framework that can steal browser...
Category: News
Data Breach
LeakBase Admin Arrested in Russia After Massive Stolen Credential Market Takedown
Russian law enforcement has arrested the alleged administrator of LeakBase, a cybercrime forum that investigators say became a major marketplace...
Artificial Intelligence
AWS Bedrock Security Research Exposes Eight Dangerous AI Attack Paths
Security researchers at XM Cyber say the power that makes AWS Bedrock useful for enterprise AI can also make it...
Cyber Attack
Microsoft Warns IRS Phishing Hits 29,000 Users With ScreenConnect Malware
Microsoft is warning that attackers are using the U.S. tax season to push phishing emails and malware at scale, with...
Cyber Attack
Trivy Supply Chain Hack Spreads Infostealer, Worm and Kubernetes Wiper
Security teams are dealing with a much bigger Trivy incident than a simple tool compromise. Researchers say the attack that...
Cyber Attack
Hackers Exploit Critical Quest KACE Flaw to Hijack Unpatched Systems
Threat actors are suspected of exploiting a maximum severity vulnerability in Quest KACE Systems Management Appliance, or SMA, according to...
News
FBI Warns of Russian Phishing Attacks on Signal and WhatsApp
U.S. and European cybersecurity agencies are warning that threat actors linked to Russian intelligence services are running large scale phishing...
News
Oracle Patches Critical 9.8 Identity Manager RCE Flaw
Oracle has released an out of band security update to fix a critical flaw in Oracle Identity Manager and Oracle...
Cyber Attack
Trivy Supply Chain Attack Triggers Self Spreading CanisterWorm Across npm
A follow on wave of malicious npm packages has turned a recent Trivy supply chain compromise into something more alarming:...
Cyber Attack
Trivy GitHub Actions Breach Hijacks 75 Tags to Steal CI/CD Secrets
Trivy GitHub Actions breach hijacked tags to steal CI/CD secrets; teams should rotate credentials now and pin actions to full...