Security
Malicious Rust Crates Target Developer Secrets via CI/CD
Cybersecurity researchers have identified a coordinated campaign involving five malicious software packages, or “crates,” in the Rust programming language ecosystem. These crates were designed to steal...
-
Security
/ 2 hours agoSupply Chain Attack via nx npm Package Leads to AWS Breach
A threat actor identified as UNC6426 used credentials stolen during a software supply chain attack to gain administrative control over a...
-
Security
/ 2 hours agoMicrosoft Fixes 84 Security Holes, Two Zero-Days in March Update
Microsoft released its monthly security updates on Tuesday, addressing a total of 84 newly discovered vulnerabilities across its software ecosystem. The...
-
Security
/ 13 hours agoRussian APT28 Group Uses BEARDSHELL, COVENANT Malware Against Ukraine
A Russian state sponsored hacking group known as APT28 has deployed two new malware families, BEARDSHELL and COVENANT, to conduct long...
-
Security
/ 13 hours agoReducing Attack Surface Can Mitigate Zero-Day Threats
Security experts are emphasizing that organizations can proactively reduce their risk from critical software vulnerabilities, known as zero-days, by minimizing their...
-
Security
/ 13 hours agoGoogle Looker Studio Flaws Allowed Cross-Tenant Data Access
Cybersecurity researchers have disclosed a set of nine critical vulnerabilities in Google Looker Studio, a business intelligence and data visualization platform....
-
Security
/ 13 hours agoKadNap Malware Infects 14,000 Devices for Proxy Botnet
Security researchers have identified a new malware campaign that has compromised more than 14,000 network edge devices, primarily Asus routers, to...
-
Security
/ 14 hours agoAI Agent Security Risks Prompt Calls for New Audit Protocols
The rapid adoption of autonomous artificial intelligence systems, known as AI agents, has introduced significant new data security vulnerabilities that require...
-
Security
/ 14 hours agoFortiGate Firewalls Exploited for Network Breaches, Credential Theft
Cybersecurity researchers have identified an ongoing campaign where threat actors are exploiting FortiGate Next-Generation Firewall appliances to gain initial access to...
-
Security
/ 1 day agoCISA Flags Three Critical Flaws as Actively Exploited
The U.S. cybersecurity and Infrastructure Security Agency (CISA) updated its public catalog of security vulnerabilities on Monday, adding three specific flaws...
