-
Security
/ 2 months agoMalicious Rust Crates Target Developer Secrets via CI/CD
Cybersecurity researchers have identified a coordinated campaign involving five malicious software packages, or “crates,” in the Rust programming language ecosystem. These...
-
Security
/ 2 months agoSupply Chain Attack via nx npm Package Leads to AWS Breach
A threat actor identified as UNC6426 used credentials stolen during a software supply chain attack to gain administrative control over a...
-
Security
/ 2 months agoMicrosoft Fixes 84 Security Holes, Two Zero-Days in March Update
Microsoft released its monthly security updates on Tuesday, addressing a total of 84 newly discovered vulnerabilities across its software ecosystem. The...
-
Security
/ 2 months agoRussian APT28 Group Uses BEARDSHELL, COVENANT Malware Against Ukraine
A Russian state sponsored hacking group known as APT28 has deployed two new malware families, BEARDSHELL and COVENANT, to conduct long...
-
Security
/ 2 months agoReducing Attack Surface Can Mitigate Zero-Day Threats
Security experts are emphasizing that organizations can proactively reduce their risk from critical software vulnerabilities, known as zero-days, by minimizing their...
-
Security
/ 2 months agoGoogle Looker Studio Flaws Allowed Cross-Tenant Data Access
Cybersecurity researchers have disclosed a set of nine critical vulnerabilities in Google Looker Studio, a business intelligence and data visualization platform....
-
Security
/ 2 months agoKadNap Malware Infects 14,000 Devices for Proxy Botnet
Security researchers have identified a new malware campaign that has compromised more than 14,000 network edge devices, primarily Asus routers, to...
-
Security
/ 2 months agoAI Agent Security Risks Prompt Calls for New Audit Protocols
The rapid adoption of autonomous artificial intelligence systems, known as AI agents, has introduced significant new data security vulnerabilities that require...
-
Security
/ 2 months agoFortiGate Firewalls Exploited for Network Breaches, Credential Theft
Cybersecurity researchers have identified an ongoing campaign where threat actors are exploiting FortiGate Next-Generation Firewall appliances to gain initial access to...
-
Security
/ 2 months agoCISA Flags Three Critical Flaws as Actively Exploited
The U.S. cybersecurity and Infrastructure Security Agency (CISA) updated its public catalog of security vulnerabilities on Monday, adding three specific flaws...
Recent Posts
