Information security
Information security

3 hours ago

Information security

Jen Easterly, cybersecurity's 'relentless optimist'

The Kill Chain Is Obsolete When Your AI Agent Is the Threat

A state-sponsored threat actor used an AI coding agent for autonomous cyber espionage, raising concerns about compromised AI agents within environments.

AI Speeds Attacks, But Identity Remains Cybersecurity's Weakest Link

Identity, pace, and geopolitical influences are primary concerns for cybersecurity teams today.

12 hours ago

Attackers exploit open source to spread malware

TeamPCP poses a significant threat to cloud platforms and open-source software through evolving cyber attacks on software supply chains.

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

An active device code phishing campaign targets Microsoft 365 identities across over 340 organizations in multiple countries, utilizing various deceptive techniques.

fromNextgov.com

Ex-NSA leaders say Americans are becoming 'numb' to cyber threats

American society is increasingly apathetic to cyberattacks, lacking a strong strategy to deter foreign adversaries and their hackers.

3 hours ago

Jen Easterly, cybersecurity's 'relentless optimist'

Cybersecurity and AI are now inseparable, reshaping the digital ecosystem and emphasizing community collaboration for a secure digital world.

The Kill Chain Is Obsolete When Your AI Agent Is the Threat

A state-sponsored threat actor used an AI coding agent for autonomous cyber espionage, raising concerns about compromised AI agents within environments.

AI Speeds Attacks, But Identity Remains Cybersecurity's Weakest Link

Identity, pace, and geopolitical influences are primary concerns for cybersecurity teams today.

12 hours ago

Attackers exploit open source to spread malware

TeamPCP poses a significant threat to cloud platforms and open-source software through evolving cyber attacks on software supply chains.

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

An active device code phishing campaign targets Microsoft 365 identities across over 340 organizations in multiple countries, utilizing various deceptive techniques.

fromNextgov.com

Ex-NSA leaders say Americans are becoming 'numb' to cyber threats

American society is increasingly apathetic to cyberattacks, lacking a strong strategy to deter foreign adversaries and their hackers.

more#cybersecurity

1 hour ago

US government launches Bureau of Emerging Threats | Computer Weekly

The US government has launched a Bureau of Emerging Threats to address national security risks from cyber attacks, space weaponization, and emerging technologies.

#ransomware

fromABC7 San Francisco

4 hours ago

SF cybersecurity conference attendees address ransomware attack in Foster City

A ransomware attack on Foster City has led to a local state of emergency and disrupted city government services.

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

A Russian national was sentenced to two years for managing a botnet used in ransomware attacks against U.S. companies.

13 hours ago

US Prisons Russian Access Broker for Aiding Ransomware Attacks

Aleksei Volkov was sentenced to 81 months in prison for his role in ransomware attacks causing over $9 million in losses.

fromSecuritymagazine

Security Leaders Share Thoughts on Foster City Cyberattack

Foster City declared a state of emergency due to a ransomware attack, highlighting vulnerabilities in municipal IT infrastructure and the need for better funding and security.

Chip tester shrugged off ransomware - then came the leak

Trio-Tech International reversed its initial assessment of a ransomware attack, now considering it a material cybersecurity event after data was disclosed.

fromABC7 San Francisco

4 hours ago

SF cybersecurity conference attendees address ransomware attack in Foster City

A ransomware attack on Foster City has led to a local state of emergency and disrupted city government services.

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

A Russian national was sentenced to two years for managing a botnet used in ransomware attacks against U.S. companies.

13 hours ago

US Prisons Russian Access Broker for Aiding Ransomware Attacks

Aleksei Volkov was sentenced to 81 months in prison for his role in ransomware attacks causing over $9 million in losses.

fromSecuritymagazine

Security Leaders Share Thoughts on Foster City Cyberattack

Foster City declared a state of emergency due to a ransomware attack, highlighting vulnerabilities in municipal IT infrastructure and the need for better funding and security.

Chip tester shrugged off ransomware - then came the leak

Trio-Tech International reversed its initial assessment of a ransomware attack, now considering it a material cybersecurity event after data was disclosed.

European officials highlight private sector help in major cybercrime takedowns

Private sector partners play a crucial role in cybercrime takedowns, aiding law enforcement in disrupting criminal activities and infrastructure.

8 hours ago

Information security

Russian Cybercriminal Gets 2-Year Prison Sentence in US

Information security

Russian initial access broker jailed for 81 months in US

fromNextgov.com

15 minutes ago

European officials highlight private sector help in major cybercrime takedowns

Private sector partners play a crucial role in cybercrime takedowns, aiding law enforcement in disrupting criminal activities and infrastructure.

8 hours ago

Information security

Russian Cybercriminal Gets 2-Year Prison Sentence in US

Information security

Russian initial access broker jailed for 81 months in US

more#cybercrime

#microsoft

7 hours ago

Emergency Microsoft, Oracle patches point to wider cyber issues | Computer Weekly

Emergency patches from Microsoft and Oracle highlight ongoing issues with update cycles, patching, and identity security.

Information security

Microsoft releases emergency fix for account internet error

Microsoft released an out-of-band update to fix bugs from a recent Windows patch, addressing a Microsoft account issue causing login errors.

7 hours ago

Emergency Microsoft, Oracle patches point to wider cyber issues | Computer Weekly

Emergency patches from Microsoft and Oracle highlight ongoing issues with update cycles, patching, and identity security.

Microsoft releases emergency fix for account internet error

Microsoft released an out-of-band update to fix bugs from a recent Windows patch, addressing a Microsoft account issue causing login errors.

Team password manager costs $1.50 & just added the features businesses actually need

Stolen credentials are a major security risk; using a password manager like Passpack can mitigate this threat effectively.

fromInfoWorld

11 hours ago

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

Compromised LiteLLM packages executed a three-stage payload targeting sensitive data in cloud environments before being removed from PyPI.

fromTechRepublic

Nearly 7M Email Addresses Exposed in Crunchyroll Third-Party Breach

Crunchyroll was breached through a third-party vendor, compromising user data and internal systems via a support agent's account.

5 hours ago

Platformisation or platform theatre? Navigating cyber consolidation | Computer Weekly

Consolidation in enterprise security is necessary but can introduce risks like single points of failure and integration issues.

11 hours ago

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

TeamPCP hacking group expanded its attacks to multiple platforms, exploiting vulnerabilities and compromising credentials for malicious purposes.

11 hours ago

RSAC 2026 Conference Announcements Summary (Day 2)

RSAC 2026 Conference showcases significant cybersecurity product and service updates from various vendors.

13 hours ago

OpenAI launches tools to help develop safer apps

OpenAI released the Teen Safety Policy Pack to enhance online safety for young people by providing concrete guidelines for developers.

Fujitsu brings AI and social issues together

Fujitsu leverages AI to address social issues in healthcare, marine ecosystems, and cybersecurity through data-driven decision-making and digital twin technology.

fromZDNET

How Claude Code's new auto mode prevents AI coding disasters - without slowing you down

Claude's auto mode enhances safety by reducing permission prompts while maintaining control over risky commands.

17 hours ago

Fujitsu brings AI and social issues together

Fujitsu leverages AI to address social issues in healthcare, marine ecosystems, and cybersecurity through data-driven decision-making and digital twin technology.

fromZDNET

How Claude Code's new auto mode prevents AI coding disasters - without slowing you down

Claude's auto mode enhances safety by reducing permission prompts while maintaining control over risky commands.

New NSA director pushes for more intel-sharing with allies in internal meeting

Gen. Josh Rudd emphasizes enhanced intelligence-sharing with allies and a focus on foreign adversaries like Russia and China.

#ai-agents

fromwww.businessinsider.com

AI agents are cybersecurity firms' newest employees

AI agents are increasingly being adopted in cybersecurity to automate complex workflows and manage growing workloads amid a shortage of qualified analysts.

Information security

5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents

Gartner's Market Guide for Guardian Agents highlights the rapid adoption of AI agents and the associated governance risks.

fromwww.businessinsider.com

AI agents are cybersecurity firms' newest employees

AI agents are increasingly being adopted in cybersecurity to automate complex workflows and manage growing workloads amid a shortage of qualified analysts.

5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents

Gartner's Market Guide for Guardian Agents highlights the rapid adoption of AI agents and the associated governance risks.

1 in 2 security leaders say they're not ready for AI attacks - 4 actions to take now

AI-powered cybercrime is a significant and growing threat to businesses, with many feeling unprotected.

Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn

Citrix released critical patches for vulnerabilities in NetScaler ADC and Gateway, addressing memory leaks and session mixup issues.

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

Citrix released security updates for critical vulnerabilities in NetScaler ADC and Gateway that could leak sensitive data.

Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn

Citrix released critical patches for vulnerabilities in NetScaler ADC and Gateway, addressing memory leaks and session mixup issues.

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

Citrix released security updates for critical vulnerabilities in NetScaler ADC and Gateway that could leak sensitive data.

Tencent Brings OpenClaw AI Agents to 1B WeChat Users

Tencent integrates OpenClaw AI agents into WeChat, allowing users to interact with AI as they would with friends.

Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR

A malvertising campaign targets U.S. individuals searching for tax documents, delivering rogue installers that blind security programs using BYOVD techniques.

Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner

A phishing campaign targets French-speaking corporations with fake resumes, deploying malware for credential theft and cryptocurrency mining.

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware

Microsoft warns of phishing campaigns exploiting the U.S. tax season to steal credentials and deliver malware.

Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner

A phishing campaign targets French-speaking corporations with fake resumes, deploying malware for credential theft and cryptocurrency mining.

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware

Microsoft warns of phishing campaigns exploiting the U.S. tax season to steal credentials and deliver malware.

more#phishing

Cyber pros must grasp the vibe coding nettle, says NCSC chief | Computer Weekly

Cyber security professionals must develop safeguards for AI-enhanced software generation to prevent vulnerabilities and cyber attacks.

fromTechRepublic

New 'DarkSword' Leak Puts Millions of iPhones at Risk After Initial Attack

The leaked DarkSword exploit kit poses a significant threat to outdated iPhones, making attacks easier for less experienced hackers.

DoE Publishes 5-Year Energy Security Plan

Energy is critical for daily life, economy, and national security, making it a target for cyber threats.

#ai-safety

fromTNW | Artificial-Intelligence

OpenAI releases open-source teen safety tools for AI developers

OpenAI is releasing open-source safety policies to help developers create safer AI applications for teenagers.

OpenAI adds open source tools to help developers build for teen safety | TechCrunch

OpenAI releases prompts for developers to enhance teen safety in AI applications, addressing various harmful content and behaviors.

fromTNW | Artificial-Intelligence

OpenAI releases open-source teen safety tools for AI developers

OpenAI is releasing open-source safety policies to help developers create safer AI applications for teenagers.

OpenAI adds open source tools to help developers build for teen safety | TechCrunch

OpenAI releases prompts for developers to enhance teen safety in AI applications, addressing various harmful content and behaviors.

HPE embeds security in network further with SRX400 and AI governance

HPE aims to deeply integrate security into networks with the new SRX400 Series Firewalls and updates to enhance cyber resilience.

Stryker Says Malicious File Found During Probe Into Iran-Linked Attack

Stryker identified a malicious file used in a cyberattack by the Iran-linked group Handala, disrupting operations but finding no evidence of malware or ransomware.

Hack on the Dutch ministry of Finance

The Ministry of Finance experienced a hack, with unauthorized access detected in primary systems, prompting an investigation.

fromSFGATE

Dayslong cyberattack continues to paralyze Bay Area city

Foster City is experiencing a prolonged cyberattack, leading to a state of emergency and significant disruption of government services.

Stryker Says Malicious File Found During Probe Into Iran-Linked Attack

Stryker identified a malicious file used in a cyberattack by the Iran-linked group Handala, disrupting operations but finding no evidence of malware or ransomware.

Hack on the Dutch ministry of Finance

The Ministry of Finance experienced a hack, with unauthorized access detected in primary systems, prompting an investigation.

fromSFGATE

Dayslong cyberattack continues to paralyze Bay Area city

Foster City is experiencing a prolonged cyberattack, leading to a state of emergency and significant disruption of government services.

Palo Alto Networks launches Prisma Browser for Business

Palo Alto Networks launches Prisma Browser for Business, a secure browser designed for SMBs to protect against cyber threats and enhance productivity.

Chrome 146 Update Patches High-Severity Vulnerabilities

The first vulnerability, CVE-2026-4673, is a heap buffer overflow issue in WebAudio that earned the reporting researcher a $7,000 bug bounty reward. Google has yet to determine the bounty amount for CVE-2026-4677, another bug reported by the same researcher.

Information security

fromArs Technica

Self-propagating malware poisons open source software and wipes Iran-based machines

CanisterWorm, as Aikido has named the malware, targets organizations' CI/CD pipelines used for rapid development and deployment of software. Every developer or CI pipeline that installs this package and has an npm token accessible becomes an unwitting propagation vector.

Information security

Databricks launches Lakewatch: agentic SIEM on the Lakehouse

Lakewatch is an open SIEM platform that consolidates security, IT, and business data, enabling rapid threat detection and response using AI agents.

Databricks bought two startups to underpin its new AI security product | TechCrunch

Lakewatch leverages Databricks' data storage capabilities to perform essential SIEM tasks, such as threat detection and investigation, enhanced by AI agents from Anthropic's Claude.

Information security

fromComputerworld

HP launches TPM Guard to help defeat physical TPM attacks

TPM Guard protects against physical attacks on encryption keys by creating a secure tunnel between the TPM and CPU.

Poland Faced a Surge in Cyberattacks in 2025, Including a Major Assault on the Energy Sector

"We've been waging a war in cyberspace for many years now. The number of incidents and attacks has been increasing significantly and radically year after year."

Information security

F5 and Forcepoint join forces for AI security

F5 and Forcepoint partner to enhance data security for enterprises deploying AI through data discovery, classification, and runtime protection.

fromZDNET

3 ways Cisco's DefenseClaw aims to make agentic AI safer

Cisco introduces DefenseClaw to provide necessary oversight for agentic AI operations.

Lightning-fast exploits mean patch fast, says Cisco Talos

Strengthening MFA policies and enhancing anti-phishing training are critical as attackers exploit vulnerabilities rapidly and effectively.

Google unleashes Gemini AI agents on the dark web

Google's Gemini AI agents analyze the dark web for threats, achieving 98% accuracy while processing millions of posts daily.

#oracle

Information security

Oracle releases emergency patch for serious vulnerability

Information security

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

Oracle releases emergency patch for serious vulnerability

A critical vulnerability in Oracle Identity Manager and Oracle Web Services Manager allows remote code execution without authentication, posing severe risks.

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

Oracle issued critical patches for vulnerabilities in Identity Manager and Web Services Manager, allowing remote code execution by unauthenticated attackers.

The CISO Struggle: How AI is Changing the Data Security Landscape

Generative AI adoption is rapid, but security governance is lagging, creating significant risks for organizations.

We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them

AWS Bedrock's connectivity makes it powerful but also exposes it to multiple attack vectors that can compromise enterprise data.

Fortinet adds AI and post-quantum security to FortiOS 8.0

Fortinet's FortiOS 8.0 integrates AI, cloud, and quantum computing to enhance network security and management efficiency.

fromInfoQ

Architecting Portable Systems on Open Standards for Digital Sovereignty

Digital sovereignty involves having a valid 'Plan B' for critical systems to avoid reliance on single vendors.

QNAP Patches Four Vulnerabilities Exploited at Pwn2Own

QNAP released patches for multiple vulnerabilities, including four critical issues demonstrated at Pwn2Own 2025 affecting SD-WAN routers.

fromTechRepublic

Windows 11 Patch Triggers Sign-In Failures Across Microsoft Apps

Windows 11 users face sign-in issues due to a bug from the March 2026 update, affecting personal Microsoft accounts and various services.

FBI says Iranian hackers are using Telegram to steal data in malware attacks | TechCrunch

Iranian government hackers exploit Telegram to steal data from dissidents and journalists through malware disguised as legitimate apps.

fromComputerworld