AI-Enabled Adversaries Compress Time-to-Exploit Following Vulnerability Disclosure
Rapid7 says median time from publication to CISA KEV inclusion dropped to five days
Information Security Magazine
Vidar Stealer 2.0 Exploits GitHub, Reddit to Deliver Malware via Fake Game Cheats
4 weeks 1 day ago
The Vidar 2.0 infostealers is deployed through fake free game cheats on GitHub and Reddit
AI Issues Will Drive Half of Incident Response Efforts by 2028, Says Gartner
4 weeks 1 day ago
Gartner has urged security teams to get involved in AI projects from the start to avoid costly incident response
Android OS-Level Attack Bypasses Mobile Payment Security
4 weeks 1 day ago
Android’s LSPosed-based attack hijacks payment apps via runtime manipulation and SIM-binding bypass
'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment
4 weeks 2 days ago
CursorJack shows how malicious MCP deeplinks in Cursor IDE can trigger user-approved code execution
Surge in Nation State Attacks on UK Firms Amid Cyber Warfare Fears
4 weeks 2 days ago
Armis reveals that “mutually assured disruption” is no longer preventing state-backed attacks
Average Number of Daily API Attacks Up 113% Annually
4 weeks 2 days ago
Akamai says 87% of organizations suffered an API-related security incident last year
UK Cyber Monitoring Centre Sets Its Sights on US Expansion One Year After Launch
4 weeks 2 days ago
The US Cyber Monitoring Center should be operational in 2027, said the UK CMC leadership
Researchers Warn of Global Surge in Fake Shipment Tracking Scams
1 month ago
Some of these campaigns are linked to Darcula, a Chinese-language phishing-as-a-service platform
CrackArmor Flaws Expose Linux Systems to Privilege Escalation
1 month ago
CrackArmor AppArmor flaws let local Linux users gain root, break containers and enable DoS attacks
Security Flaw in AWS Bedrock Code Interpreter Raises Alarms
1 month ago
DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data
FBI Calls for Help to Track Steam Malware Campaign
1 month ago
The FBI wants to hear from gamers who have downloaded Steam titles containing malware
UK: Companies House Web Glitch Exposes Corporate Details to Fraudsters
1 month ago
An issue with the Companies House website has put the personal and corporate information of millions at risk
Interpol's 'Operation Synergia III' Nets 94 Arrests in Major Cybercrime Sweep
1 month ago
A new law enforcement operation against phishing and ransomware operators led to the takedown of 45,000 malicious IP addresses
Law Enforcement Dismantles SocksEscort Proxy Network in Operation Lightning
1 month ago
Operation Lightning sees international law enforcement partners shut down ‘SocksEscort,’ a major malicious proxy service used by cybercriminals worldwide
PixRevolution Malware Hijacks Brazil's PIX Transfers in Real Time
1 month ago
PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse
Critical Zero-Click Flaw in n8n Allows Full Server Compromise
1 month ago
The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited
CISA Issues Emergency Directive Over Exploited Cisco SD-WAN Flaws
1 month ago
CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks
Police Scotland Fined After Sharing Victim’s Phone Data
1 month ago
The ICO has fined Police Scotland after it shared the entire contents of a victim’s phone with her alleged attacker
Iran Claims Massive Cyber-Attack on MedTech Firm Stryker
1 month ago
The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker
Checked
7 hours 49 minutes ago