Information security
Information security

1 hour ago

Wiz hands GitHub AI-aided bug report that isn't total slop

Wiz discovered a critical flaw in GitHub's infrastructure allowing remote access to private repositories, marking a shift in vulnerability discovery methods.

Critical GitHub RCE bug exposed millions of repositories

GitHub patched a critical vulnerability in GitHub Enterprise Server, but 88% of instances remained exposed at public disclosure.

Critical GitHub Vulnerability Exposed Millions of Repositories

A critical vulnerability in GitHub allowed remote code execution, exposing millions of repositories, but was quickly addressed by the company.

fromThe Verge

4 hours ago

GitHub rushed to fix a critical vulnerability in less than six hours

GitHub fixed a critical vulnerability in under six hours, preventing potential access to millions of repositories.

1 hour ago

Wiz hands GitHub AI-aided bug report that isn't total slop

Wiz discovered a critical flaw in GitHub's infrastructure allowing remote access to private repositories, marking a shift in vulnerability discovery methods.

Critical GitHub RCE bug exposed millions of repositories

GitHub patched a critical vulnerability in GitHub Enterprise Server, but 88% of instances remained exposed at public disclosure.

Critical GitHub Vulnerability Exposed Millions of Repositories

A critical vulnerability in GitHub allowed remote code execution, exposing millions of repositories, but was quickly addressed by the company.

fromThe Verge

4 hours ago

GitHub rushed to fix a critical vulnerability in less than six hours

GitHub fixed a critical vulnerability in under six hours, preventing potential access to millions of repositories.

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

A critical SQL injection vulnerability in LiteLLM was exploited shortly after disclosure, allowing unauthorized access to sensitive database information.

Hundreds of Internet-Facing VNC Servers Expose ICS/OT

Millions of RDP and VNC servers are exposed online, with significant risks to industrial control systems and operational technology.

fromArs Technica

3 hours ago

Why a recent supply-chain attack singled out security firms Checkmarx and Bitwarden

Current evidence indicates that this data originated from Checkmarx's GitHub repositories, and that access to those repositories was facilitated through the initial supply chain attack of March 23, 2023.

Information security

fromTechCrunch

56 minutes ago

Sri Lanka discloses another missing payment, days after hackers stole $2.5M from its finance ministry | TechCrunch

Sri Lanka is investigating missing payments and cyber thefts linked to hackers targeting its financial systems.

#malware

12 hours ago

Information security

Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & More

Information security

Researchers Uncover Pre-Stuxnet 'fast16' Malware Targeting Engineering Software

Information security

Pre-Stuxnet Sabotage Malware 'Fast16' Linked to US-Iran Cyber Tensions

Information security

CISA, NCSC issue Firestarter backdoor warning

Information security

Researchers find sabotage malware that may predate Stuxnet

12 hours ago

Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & More

New malware fast16 predates Stuxnet, targeting high-precision software to subtly alter calculations, potentially causing significant failures.

Researchers Uncover Pre-Stuxnet 'fast16' Malware Targeting Engineering Software

A new Lua-based malware, fast16, predates Stuxnet and targets high-precision calculation software for cyber sabotage.

Pre-Stuxnet Sabotage Malware 'Fast16' Linked to US-Iran Cyber Tensions

Fast16 is a Lua-based malware discovered by SentinelOne, predating Stuxnet, designed to tamper with high-precision software.

CISA, NCSC issue Firestarter backdoor warning

Firestarter malware targets a US federal agency, maintaining persistent access to compromised devices, posing risks to government and critical infrastructure.

Researchers find sabotage malware that may predate Stuxnet

Malware named fast16 aims to sabotage engineering and physics simulation software, predating Stuxnet and targeting high-precision tools.

LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

A critical SQL injection vulnerability in BerriAI's LiteLLM package is actively exploited within 36 hours of disclosure, allowing unauthorized database access.

#ai-agents

Information security

30 ClawHub skills secretly turn AI agents into crypto swarm

fromWIRED

The Race Is on to Keep AI Agents From Running Wild With Your Credit Cards

The FIDO Alliance is developing standards to secure AI agent transactions against digital security threats.

Information security

77% of IT managers say their AI agents are out of control - 5 ways to rein in yours

30 ClawHub skills secretly turn AI agents into crypto swarm

ClawHub skills are enabling a cryptocurrency mining swarm through AI agents without user consent or malware.

fromWIRED

The Race Is on to Keep AI Agents From Running Wild With Your Credit Cards

The FIDO Alliance is developing standards to secure AI agent transactions against digital security threats.

77% of IT managers say their AI agents are out of control - 5 ways to rein in yours

Only 23% of IT managers have complete control over AI agents, leading to security and productivity concerns.

Information security

CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV

Cyber Insurance Data Gives CISOs New Ammo for Budget Talks

CFOs and boards must understand cybersecurity risks in financial terms, which can be achieved through insurance data and analysis.

Information security

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

Information security

Are tech leaders risking a cyber resourcing crisis? | Computer Weekly

23 hours ago

VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi

VECT 2.0 acts as a wiper, permanently destroying files instead of encrypting them, making recovery impossible even for victims who pay the ransom.

Alleged Chinese State Hacker Extradited to US

Xu Zewei, a Chinese national, was extradited to the US for cyberattacks linked to a state-sponsored APT group targeting US universities.

4 hours ago

CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV

CISA added two vulnerabilities to its KEV catalog due to active exploitation, impacting ConnectWise ScreenConnect and Microsoft Windows.

Cyber Insurance Data Gives CISOs New Ammo for Budget Talks

CFOs and boards must understand cybersecurity risks in financial terms, which can be achieved through insurance data and analysis.

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

A critical vulnerability in GitHub allows remote code execution via a single 'git push' command due to improper input sanitization.

Are tech leaders risking a cyber resourcing crisis? | Computer Weekly

Cybersecurity professionals face low pay rises and high job dissatisfaction, risking a talent crisis despite the growing demand for their skills.

23 hours ago

VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi

VECT 2.0 acts as a wiper, permanently destroying files instead of encrypting them, making recovery impossible even for victims who pay the ransom.

Information security

Alleged Chinese State Hacker Extradited to US

Checkmarx Confirms Data Stolen in Supply Chain Attack

Checkmarx confirmed data theft from its KICS project due to a supply chain attack linked to TeamPCP and Lapsus$.

Ongoing supply-chain attack targets security, dev tools

Checkmarx's GitHub repository was compromised, leading to a data leak by the Lapsus$ extortion group.

3 hours ago

Checkmarx Confirms Data Stolen in Supply Chain Attack

Checkmarx confirmed data theft from its KICS project due to a supply chain attack linked to TeamPCP and Lapsus$.

Ongoing supply-chain attack targets security, dev tools

Checkmarx's GitHub repository was compromised, leading to a data leak by the Lapsus$ extortion group.

Chrome 147, Firefox 150 Security Updates Rolling Out

Google and Mozilla released security updates for Chrome and Firefox, addressing multiple memory safety vulnerabilities and critical flaws.

14 hours ago

Protecting U.S. Critical Infrastructure as Global Tensions Rise

Geopolitical tensions necessitate enhanced security measures for critical infrastructure to mitigate indirect threats and improve situational awareness.

Critical cPanel Authentication Vulnerability Identified - Update Your Server Immediately

cPanel released security updates to fix an authentication vulnerability affecting its control panel software.

fromTechRepublic

16 hours ago

ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded API key on ClickUp's public site exposed hundreds of email addresses and internal data for over a year.

fromInfoQ

CodeGuardian: A Model Context Protocol Server for AI-Assisted Code Quality Analysis and Security Scanning

Invoking security tools via an LLM and MCP reduces developer friction and context switching.

Incomplete Windows Patch Opens Door to Zero-Click Attacks

Incomplete patching of Windows vulnerabilities led to new zero-click attack vectors, enabling credential theft without user interaction.

Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202

Microsoft acknowledged active exploitation of a high-severity security flaw in Windows Shell, now patched, allowing unauthorized access to sensitive information.

Information security

Remote Desktop security beefed up with hard-to-read messages

Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202

Microsoft acknowledged active exploitation of a high-severity security flaw in Windows Shell, now patched, allowing unauthorized access to sensitive information.

Remote Desktop security beefed up with hard-to-read messages

Microsoft's Remote Desktop update has a bug preventing security warnings from displaying correctly for some users.

Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About

Assuming connectivity solves security issues is flawed; data movement poses significant risks in Zero Trust programs.

fromTechzine Global

Nearly every SME has at least one compromised user

89% of SMEs faced compromised login credentials; AI-driven attacks exploit identity issues and weak authentication.

Attack of the killer script kiddies

AI systems are increasingly capable of finding and exploiting software vulnerabilities, raising concerns about widespread hacking.

After Mythos: New Playbooks For a Zero-Window Era

AI advancements have drastically reduced the exploit window, necessitating new security strategies to address vulnerabilities in software.

Cursor-Opus agent snuffs out startup's production database

An AI coding agent deleted PocketOS's production database and backups in 9 seconds due to a credential mismatch and improper token permissions.

fromThe Verge

Attack of the killer script kiddies

AI systems are increasingly capable of finding and exploiting software vulnerabilities, raising concerns about widespread hacking.

After Mythos: New Playbooks For a Zero-Window Era

AI advancements have drastically reduced the exploit window, necessitating new security strategies to address vulnerabilities in software.

Cursor-Opus agent snuffs out startup's production database

An AI coding agent deleted PocketOS's production database and backups in 9 seconds due to a credential mismatch and improper token permissions.

What the Medtronic Breach Means for Security Experts

Medtronic confirmed a data breach but reported no impact on patient safety or operations due to separate IT networks.

The Mythos Moment: Enterprises Must Fight Agents with Agents

Agentic AI poses significant cyber risks by autonomously identifying and exploiting software vulnerabilities, necessitating advanced defensive measures.

Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents

Agentic AI is transforming cybersecurity, presenting both opportunities for defenders and risks for attackers, necessitating a strategic response from the industry.

22 hours ago

The Mythos Moment: Enterprises Must Fight Agents with Agents

Agentic AI poses significant cyber risks by autonomously identifying and exploiting software vulnerabilities, necessitating advanced defensive measures.

Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents

Agentic AI is transforming cybersecurity, presenting both opportunities for defenders and risks for attackers, necessitating a strategic response from the industry.

Malicious Python package poses new supply chain threat

The open-source package elementary-data was compromised, leading to the publication of a malicious version that stole sensitive user credentials.

20 hours ago

Brazilian LofyGang Resurfaces After Three Years With Minecraft LofyStealer Campaign

A Brazilian cybercrime group targets Minecraft players with LofyStealer malware disguised as a hack called 'Slinky'.

#ransomware

21 hours ago

Vect ransomware actually destructive wiper malware | Computer Weekly

Vect ransomware acts as a data wiper for files over 128KB, making recovery impossible even if a ransom is paid.

fromFuturism

Ransomware Negotiator Pleads Guilty to Deploying Ransomware Himself

A ransomware negotiator conspired with hackers, betraying clients and facilitating attacks against multiple companies.

21 hours ago

Vect ransomware actually destructive wiper malware | Computer Weekly

Vect ransomware acts as a data wiper for files over 128KB, making recovery impossible even if a ransom is paid.

fromFuturism

Ransomware Negotiator Pleads Guilty to Deploying Ransomware Himself

A ransomware negotiator conspired with hackers, betraying clients and facilitating attacks against multiple companies.

No Patch for New PhantomRPC Privilege Escalation Technique in Windows

A vulnerability in Windows RPC allows attackers to elevate privileges, affecting all Windows versions.

Sevii Launches Cyber Swarm Defense to Make Agentic AI Security Costs Predictable

Predictable budgets and on-demand defensive agentic AI can now be aligned despite historical incompatibility.

fromnews.bitcoin.com

Zetachain Pauses Mainnet After GatewayZEVM Contract Exploit Targets Protocol Wallets

Zetachain paused its mainnet after a vulnerability in the GatewayZEVM smart contract was exploited, affecting internal team wallets but not user funds.

Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover

AI agents in Microsoft Entra ID can lead to privilege escalation and identity takeover attacks due to a security flaw in the Agent ID Administrator role.

Dozens of Open VSX Extension Clones Linked to GlassWorm Malware

Over 70 extensions in the Open VSX marketplace are likely linked to GlassWorm malware, designed to steal sensitive information and deploy malware.

Don't pay VECT a ransom - your big files are likely gone

Organizations affected by Trivy and LiteLLM compromises that paid Vect likely received little data recovery, according to Check Point Research.

fromFortune

Ten years after Ethereum's DAO disaster, it's time to try again | Fortune

The DAO Moratorium warned of critical vulnerabilities in Ethereum's DAO, exposing nearly $200 million to hackers.

fromnews.bitcoin.com

Solana Readies Quantum Defense With 3-Step Roadmap and Falcon Implementation

Anza and Firedancer selected the Falcon post-quantum signature scheme for Solana, ensuring readiness against quantum threats without immediate migration needs.

Electric Motorcycles and Scooters Face Hacking Risks to Security and Rider Safety

Electric motorcycles from Zero Motorcycles and scooters from Yadea have vulnerabilities that could impact physical security and safety.

Spectrum Security Emerges From Stealth Mode With $19 Million

Spectrum Security has launched with $19 million in seed funding to automate threat detection and close coverage gaps.

fromSan Jose Inside

Buying, Selling on eBay Disrupted Worldwide for Nearly Two Days

eBay experienced significant technical issues due to a DDoS attack, disrupting transactions and affecting customers worldwide.

21 hours ago

Vimeo Confirms User and Customer Data Breach

Vimeo confirmed a data breach involving user data theft through a third-party vendor, but no video content or payment information was compromised.

2025 Saw Fewer Healthcare Breaches Than 2024

The report revealed that 74% of the analyzed organizations either lacked a DMARC policy entirely or had it set to monitor-only mode, which does not block spoofed emails.

Information security

#ai-security

Information security

Malicious AI Prompt Injection Attacks Increasing, but Sophistication Still Low: Google

What Claude and OpenClaw Vulnerabilities Reveal About AI Agents

AI agents must be governed like privileged accounts due to their ability to access sensitive information and execute commands.

Information security

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

Malicious AI Prompt Injection Attacks Increasing, but Sophistication Still Low: Google

Google's research reveals an increase in indirect prompt injection attacks on AI, though their sophistication remains relatively low.

What Claude and OpenClaw Vulnerabilities Reveal About AI Agents

AI agents must be governed like privileged accounts due to their ability to access sensitive information and execute commands.

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

Indirect prompt injection attacks pose significant security risks to AI systems without requiring user interaction.

Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side

AI systems like Claude Mythos can identify vulnerabilities quickly, but organizations struggle to remediate them effectively.

Wiz founder: Hack yourself with AI, before the bad guys do | Computer Weekly

Security leaders should proactively use AI tools on their systems to gain an advantage against cyber threats.

Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side

AI systems like Claude Mythos can identify vulnerabilities quickly, but organizations struggle to remediate them effectively.

Wiz founder: Hack yourself with AI, before the bad guys do | Computer Weekly

Security leaders should proactively use AI tools on their systems to gain an advantage against cyber threats.

more#ai-in-cybersecurity

PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks

PhantomCore has targeted TrueConf servers in Russia, exploiting multiple vulnerabilities since September 2025.

Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud

Telecommunications fraud campaign uses fake CAPTCHA to trick users into sending costly international text messages, generating illicit revenue for fraudsters.

OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years

OpenSSH versions have a vulnerability allowing root access via certificate misconfiguration, undetectable by log-based systems.

Mizuho Upgrades CrowdStrike With a $520 Price Target: Is AI Security the Next Mega-Trade?

Mizuho upgraded CrowdStrike to Outperform, raising its price target to $520, citing strong demand and AI security growth potential.

Vulnerabilities Patched in CrowdStrike, Tenable Products

CrowdStrike and Tenable reported serious vulnerabilities in their products, prompting customers to update to patched versions.

from24/7 Wall St.

Mizuho Upgrades CrowdStrike With a $520 Price Target: Is AI Security the Next Mega-Trade?

Mizuho upgraded CrowdStrike to Outperform, raising its price target to $520, citing strong demand and AI security growth potential.

Vulnerabilities Patched in CrowdStrike, Tenable Products

CrowdStrike and Tenable reported serious vulnerabilities in their products, prompting customers to update to patched versions.

Truecaller Faces New Pressure in India as Growth Matures - TechRepublic

Truecaller reached 500 million monthly active users but faces growth challenges in India due to increased competition and changing user needs.

Easily Exploitable 'Pack2TheRoot' Linux Vulnerability Leads to Root Access

A high-severity vulnerability in PackageKit allows unprivileged users to install packages with root privileges, tracked as CVE-2026-41651.

Energy and Water Management Firm Itron Hacked

Itron is investigating unauthorized access to its systems, but operations continue and no significant impact is expected.

fromTechCrunch

Hacker who allegedly carried out cyberattacks for China is extradited to U.S. | TechCrunch

Xu Zewei, accused of cyberattacks for the Chinese government, has been extradited to the U.S. and is now in detention in Houston, Texas.

China-Linked APT GopherWhisper Abuses Legitimate Services in Government Attacks

GopherWhisper is a newly identified APT using legitimate services for command-and-control communication and data exfiltration, primarily targeting a Mongolian government entity.

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package was compromised, enabling credential theft through a malicious payload targeting various cloud services and GitHub repositories.

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

A high-severity SSRF vulnerability in LMDeploy is actively exploited, allowing attackers to access sensitive data and internal networks.

US Federal Agency's Cisco Firewall Infected With 'Firestarter' Backdoor

A US federal agency was infected with malware due to vulnerabilities in Cisco firewalls linked to a China-backed espionage campaign.

Attackers could disable all of a city's public EV chargers

Rented IoT infrastructure prioritizes user convenience over security, exposing them to denial of service attacks and vulnerabilities.

fromTechRepublic

The Top 8 Enterprise VPN Solutions

Secure remote connections are critical for businesses to prevent data breaches, with enterprise VPN solutions being a top priority.

fromnews.bitcoin.com

Sonic Builds Quantum-Ready Blockchain With Simpler Architecture

Sonic redesigns proof-of-stake to enhance quantum resilience, shifting from elliptic curve to hash-based schemes for improved security.

fromTechzine Global