Cyber Security News

📰

Security Affairs LOW

2d

Oracle PeopleSoft RCE Flaw Used as Zero-Day in Ongoing ShinyHunters Campaign

ShinyHunters exploited a critical Oracle PeopleSoft zero-day to breach over 100 organizations, mostly universities, before a patch was available. Mandiant and Google’s Threat Intelligence Group publ...

Read more →

📰

The Hacker News LOW

2d

LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution

Cybersecurity researchers have disclosed details of three now-patched security flaws impacting LangGraph, including a critical vulnerability chain that could result in remote code execution. LangGraph...

Read more →

📰

SecurityWeek HIGH

2d

Ivanti Sentry Exploitation Attempts Hitting Honeypots

The critical-severity OS command injection vulnerability allows attackers to execute arbitrary code with root privileges. The post Ivanti Sentry Exploitation Attempts Hitting Honeypots appeared first ...

Read more →

📰

SecurityWeek LOW

2d

Chrome 149 Update Patches 28 Vulnerabilities

The browser refresh resolved critical and high-severity security defects, including a dozen use-after-free bugs. The post Chrome 149 Update Patches 28 Vulnerabilities appeared first on SecurityWeek.

Read more →

📰

SecurityWeek LOW

2d

Anthropic Disputes Fable 5 AI Jailbreak

An AI hacker claims to have achieved a prompt-based jailbreak shortly after Fable 5’s launch, but Anthropic says it’s not a real jailbreak. The post Anthropic Disputes Fable 5 AI Jailbreak appeare...

Read more →

📰

CyberScoop LOW

2d

Russian national charged in connection with Void Blizzard espionage campaign

Denis Obrezko accused of orchestrating cyberattacks that compromised at least 11 U.S. companies as part of the Kremlin-linked group's sprawling espionage operation.\ The post Russian national charged ...

Read more →

📰

Infosecurity Magazine LOW

2d

CISA Orders Agencies to Patch by Risk, Not Severity

New CISA directive tells federal agencies to patch by real-world risk, not CVSS severity scores

Read more →

📰

Infosecurity Magazine LOW

2d

Cybercriminals Use Fake AI Guides and Dev Tools to Spread AsyncRAT Malware

Fake AI guides hide a multi-stage chain that drops AsyncRAT, with signs of AI-assisted coding

Read more →

📰

Infosecurity Magazine LOW

3d

Most Cybersecurity Teams Struggle to Find Time for Training on New Cyber Threats

Organizations are aware of the challenges that new technologies like AI bring: but cybersecurity staff struggle to make time for the required training during working hours

Read more →

📰

Infosecurity Magazine LOW

3d

Interpol Dismantles SniperDz Phishing-as-a-Service Platform

New revelations by Group-IB expose the full scale of the decade-old SniperDz phishing operation

Read more →

📰

Infosecurity Magazine HIGH

3d

Extortion-Only Attacks Increase, With Data Theft Dominating Ransomware Claims

Extortion-only attacks are increasing as data theft drives most ransomware claims, with many organizations unable to stop stolen data from being exposed

Read more →

📰

Recorded Future LOW

3d

Recorded Future Launches Impact and Metrics Dashboard

See the business value of your intelligence program in one live, continuously updated dashboard, built for the conversations that matter most with the executives who own budget and strategy.

Read more →