Information security
Information security

1 hour ago

Information security

AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion

Microsoft 365 Under Siege: Phishing Campaign Bypasses MFA Across 5 Countries

A sophisticated phishing campaign exploiting Microsoft 365 accounts has affected over 340 organizations across five countries using a legitimate OAuth feature.

Information security

Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner

1 hour ago

AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion

Threat actors are using AitM phishing to compromise TikTok for Business accounts, targeting business accounts for malvertising and malware distribution.

Microsoft 365 Under Siege: Phishing Campaign Bypasses MFA Across 5 Countries

A sophisticated phishing campaign exploiting Microsoft 365 accounts has affected over 340 organizations across five countries using a legitimate OAuth feature.

Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner

A phishing campaign targets French-speaking corporations with fake resumes, deploying malware for credential theft and cryptocurrency mining.

OpenAI Launches Bug Bounty Program for Abuse and Safety Risks

OpenAI launched a public safety bug bounty program targeting AI-specific abuse and safety risks in its products.

Securing the AI Stack: From Model to Production

AI has transformed phishing into a high-velocity threat, requiring modern defenses to adopt similar layered tactics.

Information security

Details leak on Anthropic's "step-change" Mythos model

Information security

Breaking Down "The Mosaic Effect"

fromNextgov.com

Information security

ODNI is building a framework to boost spy agencies' AI adoption

Information security

Fujitsu brings AI and social issues together

fromZDNET

Information security

How Claude Code's new auto mode prevents AI coding disasters - without slowing you down

fromInfoQ

14 hours ago

Securing the AI Stack: From Model to Production

AI has transformed phishing into a high-velocity threat, requiring modern defenses to adopt similar layered tactics.

Details leak on Anthropic's "step-change" Mythos model

Anthropic is testing Claude Mythos, a new AI model tier above Opus, after a data leak exposed draft documents about it.

Breaking Down "The Mosaic Effect"

AI significantly impacts cybersecurity by introducing new risks like the mosaic effect, where aggregated data reveals sensitive information.

fromNextgov.com

ODNI is building a framework to boost spy agencies' AI adoption

The Office of the Director of National Intelligence is enhancing AI adoption for cybersecurity within the intelligence community as part of a modernization effort.

Fujitsu brings AI and social issues together

Fujitsu leverages AI to address social issues in healthcare, marine ecosystems, and cybersecurity through data-driven decision-making and digital twin technology.

fromZDNET

How Claude Code's new auto mode prevents AI coding disasters - without slowing you down

Claude's auto mode enhances safety by reducing permission prompts while maintaining control over risky commands.

Information security

Langflow RCE flaw exploited within hours, CISA warns

Information security

RSAC 2026 Conference Announcements Summary (Days 3-4)

Information security

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks

14 hours ago

Information security

How to Grow Your Cybersecurity Skills, According to Experts

Iran lashes out on the digital front as attacks go global

Cyber activity linked to the Iran conflict has escalated, with significant wiper attacks, phishing campaigns, and hacktivist activity emerging from outside Iran.

4 hours ago

Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware

Bearlyfy has conducted over 70 cyber attacks on Russian companies since January 2025, using ransomware for extortion and sabotage.

6 hours ago

Langflow RCE flaw exploited within hours, CISA warns

CISA flagged a critical code injection flaw in Langflow, enabling remote code execution without authentication, with active exploitation confirmed.

RSAC 2026 Conference Announcements Summary (Days 3-4)

Accenture and Anthropic launched Cyber.AI to automate security workflows using AI, while Akamai and Bolster AI introduced solutions to combat brand impersonation and phishing.

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks

Three vulnerabilities in LangChain and LangGraph could expose sensitive enterprise data, including filesystem files, environment secrets, and conversation history.

14 hours ago

How to Grow Your Cybersecurity Skills, According to Experts

Cybersecurity leaders are innovating and evolving their careers through education, soft skills, networking, and unique paths for professional growth.

Iran lashes out on the digital front as attacks go global

Cyber activity linked to the Iran conflict has escalated, with significant wiper attacks, phishing campaigns, and hacktivist activity emerging from outside Iran.

4 hours ago

Information security

Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware

Security boffins harvest bumper crop of API keys from web

Almost 2,000 API credentials were found exposed on 10,000 webpages, posing significant security risks to organizations and critical infrastructure.

CISA Flags Critical PTC Vulnerability That Had German Police Mobilized

CISA warns of a critical vulnerability in PTC's Windchill software, with potential for exploitation despite no current evidence of attacks.

fromComputerworld

13 hours ago

Google: The quantum apocalypse is coming sooner than we thought

Microsoft and AWS are expected to align migration schedules, making PQC transition plans a priority for CSOs.

TP-Link Patches High-Severity Router Vulnerabilities

TP-Link patched four high-severity vulnerabilities in Archer NX routers that could allow full device compromise.

TP-Link Fixes Bug That Lets Hackers Take Over Routers Without a Password

TP-Link patched critical vulnerabilities in Archer NX routers that allowed unauthorized firmware installation and network manipulation.

2 hours ago

TP-Link Patches High-Severity Router Vulnerabilities

TP-Link patched four high-severity vulnerabilities in Archer NX routers that could allow full device compromise.

TP-Link Fixes Bug That Lets Hackers Take Over Routers Without a Password

TP-Link patched critical vulnerabilities in Archer NX routers that allowed unauthorized firmware installation and network manipulation.

more#tp-link

Coruna iOS Exploit Kit Likely an Update to Operation Triangulation

These findings led us to conclude that this exploit kit was not patchworked but rather designed with a unified approach. We assume that it's an updated version of the same exploitation framework that was used - at least to some extent - in Operation Triangulation.

Information security

ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories

A sophisticated malware campaign targets Web3 support teams using deceptive links to deliver malicious executables and establish persistent communication with threat actors.

#ai-security

Information security

The Next Billion Users Won't Be Human: Securing the Agentic Enterprise

fromTelecompetitor

Information security

AT&T and Ericsson flag AI/ML threats to mobile networks

fromFast Company

Information security

This Microsoft security team stress-tests AI for its worst-case scenarios

The Next Billion Users Won't Be Human: Securing the Agentic Enterprise

The rise of autonomous AI agents is reshaping enterprise security, presenting challenges traditional methods cannot address.

fromTelecompetitor

AT&T and Ericsson flag AI/ML threats to mobile networks

AI is essential for securing mobile networks against sophisticated threats while also being a target and tool for attacks.

fromFast Company

This Microsoft security team stress-tests AI for its worst-case scenarios

AI products face probing for weaknesses, leading to risks like mental illness, cybercrime, and evolving bypass techniques.

more#ai-security

fromwww.theguardian.com

Google warns quantum computers could hack encrypted systems by 2029

Quantum computers may break existing encryption systems by 2029, posing a significant threat to online security.

fromComputerworld

What IT leaders need to know about AI-fueled death fraud

AI-generated fake death certificates pose significant risks for businesses by enabling fraudsters to exploit customer accounts and data.

fromTheregister

18 hours ago

Using AI to code does not mean your code is more secure

AI tools for coding are introducing vulnerabilities, with significant CVEs linked to AI-generated code.

#post-quantum-cryptography

BIND Updates Patch High-Severity Vulnerabilities

ISC released BIND 9 updates to fix four vulnerabilities, including two high-severity bugs that can lead to memory leaks and high CPU consumption.

Google aims to complete quantum-safe encryption migration by 2029

Google plans to transition to post-quantum cryptography by 2029 due to increasing quantum computing threats.

Google targets 2029 for post-quantum cyber readiness | Computer Weekly

Google plans to migrate to post-quantum cryptography by 2029, accelerating its timeline due to advancements in quantum technology and emerging security threats.

Google aims to complete quantum-safe encryption migration by 2029

Google plans to transition to post-quantum cryptography by 2029 due to increasing quantum computing threats.

more#post-quantum-cryptography

Google targets 2029 for post-quantum cyber readiness | Computer Weekly

Google plans to migrate to post-quantum cryptography by 2029, accelerating its timeline due to advancements in quantum technology and emerging security threats.

Cisco Patches Multiple Vulnerabilities in IOS Software

Cisco released patches for high- and medium-severity vulnerabilities in IOS and IOS XE, primarily to prevent denial-of-service conditions.

fromComputerworld

21 hours ago

Enterprise laptops adopt Intel's new Core Ultra Series 3 chips

Users of systems running on the new chips will see over 30% faster performance, up to 80% better graphics, and up to 4x AI performance compared to four-year-old systems.

Information security

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks

Coruna exploit kit is an evolved version of the Operation Triangulation exploit, targeting iOS devices with multiple vulnerabilities.

fromInfoWorld

Databricks pitches Lakewatch as a cheaper SIEM - but is it really?

"This is more likely to complement existing SIEMs than replace them. Early adoption will come from large enterprises already committed to Databricks, especially those seeking flexibility or cost control."

Information security

Emergency Microsoft, Oracle patches point to wider cyber issues | Computer Weekly

Emergency patches from Microsoft and Oracle highlight ongoing issues with update cycles, patching, and identity security.

fromEntrepreneur

This AI Security Strategy Is Redefining Cyberattack Recovery

Combining Zero Trust principles with AI enhances resilience, reduces downtime, and maintains strict access controls.

fromTNW | Offers

Team password manager costs $1.50 & just added the features businesses actually need

Stolen credentials are a major security risk; using a password manager like Passpack can mitigate this threat effectively.

fromInfoWorld

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

Compromised LiteLLM packages executed a three-stage payload targeting sensitive data in cloud environments before being removed from PyPI.

Nearly 7M Email Addresses Exposed in Crunchyroll Third-Party Breach

Crunchyroll was breached through a third-party vendor, compromising user data and internal systems via a support agent's account.

Platformisation or platform theatre? Navigating cyber consolidation | Computer Weekly

Consolidation in enterprise security is necessary but can introduce risks like single points of failure and integration issues.

fromTheregister

Scammers have virtual smartphones on speed dial for fraud

Cloud phones are increasingly exploited by cybercriminals for authorized push payment fraud due to their legitimate appearance and ease of use.

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

TeamPCP hacking group expanded its attacks to multiple platforms, exploiting vulnerabilities and compromising credentials for malicious purposes.

Inside RSA 2026: Security Leaders Grapple With AI's Growing Role and Risks

The RSA Conference 2026 emphasizes the rise of AI in cybersecurity and the critical need for governance and trust in AI systems.

RSAC 2026 Conference Announcements Summary (Day 2)

RSAC 2026 Conference showcases significant cybersecurity product and service updates from various vendors.

#ransomware

fromABC7 San Francisco

SF cybersecurity conference attendees address ransomware attack in Foster City

A ransomware attack on Foster City has led to a local state of emergency and disrupted city government services.

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

A Russian national was sentenced to two years for managing a botnet used in ransomware attacks against U.S. companies.

US Prisons Russian Access Broker for Aiding Ransomware Attacks

Aleksei Volkov was sentenced to 81 months in prison for his role in ransomware attacks causing over $9 million in losses.

Security Leaders Share Thoughts on Foster City Cyberattack

Foster City declared a state of emergency due to a ransomware attack, highlighting vulnerabilities in municipal IT infrastructure and the need for better funding and security.

fromABC7 San Francisco

SF cybersecurity conference attendees address ransomware attack in Foster City

A ransomware attack on Foster City has led to a local state of emergency and disrupted city government services.

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

A Russian national was sentenced to two years for managing a botnet used in ransomware attacks against U.S. companies.

US Prisons Russian Access Broker for Aiding Ransomware Attacks

Aleksei Volkov was sentenced to 81 months in prison for his role in ransomware attacks causing over $9 million in losses.

Security Leaders Share Thoughts on Foster City Cyberattack

Foster City declared a state of emergency due to a ransomware attack, highlighting vulnerabilities in municipal IT infrastructure and the need for better funding and security.

OpenAI launches tools to help develop safer apps

OpenAI released the Teen Safety Policy Pack to enhance online safety for young people by providing concrete guidelines for developers.

European officials highlight private sector help in major cybercrime takedowns

Private sector partners play a crucial role in cybercrime takedowns, aiding law enforcement in disrupting criminal activities and infrastructure.

Information security

Russian Cybercriminal Gets 2-Year Prison Sentence in US

fromNextgov.com

European officials highlight private sector help in major cybercrime takedowns

Private sector partners play a crucial role in cybercrime takedowns, aiding law enforcement in disrupting criminal activities and infrastructure.

Information security

Russian Cybercriminal Gets 2-Year Prison Sentence in US

New NSA director pushes for more intel-sharing with allies in internal meeting

Gen. Josh Rudd emphasizes enhanced intelligence-sharing with allies and a focus on foreign adversaries like Russia and China.

#ai-agents

fromwww.businessinsider.com

AI agents are cybersecurity firms' newest employees

AI agents are increasingly being adopted in cybersecurity to automate complex workflows and manage growing workloads amid a shortage of qualified analysts.

Information security

5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents

Gartner's Market Guide for Guardian Agents highlights the rapid adoption of AI agents and the associated governance risks.

fromwww.businessinsider.com

AI agents are cybersecurity firms' newest employees

AI agents are increasingly being adopted in cybersecurity to automate complex workflows and manage growing workloads amid a shortage of qualified analysts.

5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents

Gartner's Market Guide for Guardian Agents highlights the rapid adoption of AI agents and the associated governance risks.

1 in 2 security leaders say they're not ready for AI attacks - 4 actions to take now

AI-powered cybercrime is a significant and growing threat to businesses, with many feeling unprotected.

Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn

Citrix released critical patches for vulnerabilities in NetScaler ADC and Gateway, addressing memory leaks and session mixup issues.

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

Citrix released security updates for critical vulnerabilities in NetScaler ADC and Gateway that could leak sensitive data.

Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn

Citrix released critical patches for vulnerabilities in NetScaler ADC and Gateway, addressing memory leaks and session mixup issues.

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

Citrix released security updates for critical vulnerabilities in NetScaler ADC and Gateway that could leak sensitive data.

Tencent Brings OpenClaw AI Agents to 1B WeChat Users

Tencent integrates OpenClaw AI agents into WeChat, allowing users to interact with AI as they would with friends.

Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR

A malvertising campaign targets U.S. individuals searching for tax documents, delivering rogue installers that blind security programs using BYOVD techniques.

Cyber pros must grasp the vibe coding nettle, says NCSC chief | Computer Weekly

Cyber security professionals must develop safeguards for AI-enhanced software generation to prevent vulnerabilities and cyber attacks.

New 'DarkSword' Leak Puts Millions of iPhones at Risk After Initial Attack

The leaked DarkSword exploit kit poses a significant threat to outdated iPhones, making attacks easier for less experienced hackers.

DoE Publishes 5-Year Energy Security Plan

Energy is critical for daily life, economy, and national security, making it a target for cyber threats.

#ai-safety

fromTNW | Artificial-Intelligence

OpenAI releases open-source teen safety tools for AI developers

OpenAI is releasing open-source safety policies to help developers create safer AI applications for teenagers.

fromTechCrunch

OpenAI adds open source tools to help developers build for teen safety | TechCrunch

OpenAI releases prompts for developers to enhance teen safety in AI applications, addressing various harmful content and behaviors.

fromTNW | Artificial-Intelligence

OpenAI releases open-source teen safety tools for AI developers

OpenAI is releasing open-source safety policies to help developers create safer AI applications for teenagers.

fromTechCrunch

OpenAI adds open source tools to help developers build for teen safety | TechCrunch

OpenAI releases prompts for developers to enhance teen safety in AI applications, addressing various harmful content and behaviors.

HPE embeds security in network further with SRX400 and AI governance

HPE aims to deeply integrate security into networks with the new SRX400 Series Firewalls and updates to enhance cyber resilience.

Stryker Says Malicious File Found During Probe Into Iran-Linked Attack

Stryker identified a malicious file used in a cyberattack by the Iran-linked group Handala, disrupting operations but finding no evidence of malware or ransomware.

Hack on the Dutch ministry of Finance

The Ministry of Finance experienced a hack, with unauthorized access detected in primary systems, prompting an investigation.

Stryker Says Malicious File Found During Probe Into Iran-Linked Attack

Stryker identified a malicious file used in a cyberattack by the Iran-linked group Handala, disrupting operations but finding no evidence of malware or ransomware.

Hack on the Dutch ministry of Finance

The Ministry of Finance experienced a hack, with unauthorized access detected in primary systems, prompting an investigation.

Palo Alto Networks launches Prisma Browser for Business

Palo Alto Networks launches Prisma Browser for Business, a secure browser designed for SMBs to protect against cyber threats and enhance productivity.

Chrome 146 Update Patches High-Severity Vulnerabilities

The first vulnerability, CVE-2026-4673, is a heap buffer overflow issue in WebAudio that earned the reporting researcher a $7,000 bug bounty reward. Google has yet to determine the bounty amount for CVE-2026-4677, another bug reported by the same researcher.

Information security

fromArs Technica

Self-propagating malware poisons open source software and wipes Iran-based machines

CanisterWorm, as Aikido has named the malware, targets organizations' CI/CD pipelines used for rapid development and deployment of software. Every developer or CI pipeline that installs this package and has an npm token accessible becomes an unwitting propagation vector.

Information security