Aggregator

Newark, New Jersey, United States, 16th September 2025, CyberNewsWire

Newark, New Jersey, United States, 16th September 2025, CyberNewsWire

The post 3 Weeks Left Until the Start of the OpenSSL Conference 2025 appeared first on Security Boulevard.

IOC Alert: Lumma Stealer Command-and-Control Infrastructure

On September 15, a new supply chain attack was identified that targeted the @ctrl/tinycolor and 150 other NPM packages. The attack scenario was similar to the one used in the s1ngularity and GhostActions campaigns. The threat actors combined a local environment secrets extraction with a malicious GitHub actions workflow

The post Shai-Hulud: A Persistent Secret Leaking Campaign appeared first on Security Boulevard.

Ekonomipoolen i Mark AB Falls Victim to Kairos Ransomware

​Microsoft is rolling out Copilot Chat to Word, Excel, PowerPoint, Outlook, and OneNote for paying Microsoft 365 business customers. [...]

CrowdStrike at its Fal.Con event today expanded its effort to embed artificial intelligence (AI) agents into security operations center (SOC) workflows and while simultaneously extending its ability to secure AI applications by acquiring Pangea for $260 million. Additionally, CrowdStrike also revealed the Fall 2025 update to its core platform adds a graph capability to track..

The post CrowdStrike Extends AI Security Ambitions Beyond Operations to Include Workloads appeared first on Security Boulevard.

Alleged Sale of Corporate VPN & Domain Admin Access to a Singapore Company

Неужели тёмная энергия перестала быть постоянной?

The rise of large language models (LLMs) has revolutionized how we interact with technology, but their true potential has always been limited by their inability to interact with the real world. LLMs are trained on vast, static datasets, meaning they have no direct access to real-time information or the ability to perform actions in external […]

The post Top 10 Best MCP (Model Context Protocol) Servers in 2025 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The acquisition comes during a flurry of larger cybersecurity firms looking to add AI security to their customer offerings.

The post Check Point acquires AI security firm Lakera in push for enterprise AI protection appeared first on CyberScoop.

The measure from the House Appropriations Committee would extend the life of the 2015 Cybersecurity Information Sharing Act (CISA 2015) and the State and Local Cybersecurity Grant Program — both of which are slated to expire September 30 — until November 21.

A massive Android ad fraud operation dubbed "SlopAds" was disrupted after 224 malicious applications on Google Play were used to generate 2.3 billion ad requests per day. [...]

Luxury fashion company Kering has confirmed a data exfiltration incident in which threat actor Shiny Hunters accessed private customer records for Gucci, Balenciaga, and Alexander McQueen. The breach, detected in June but occurring in April, exposed personally identifiable information (PII) for an estimated 7.4 million unique email addresses. Key Takeaways1. PII and spend data of […]

The post Hackers Stolen Millions of Users Personal Data from Gucci, Balenciaga and Alexander McQueen Stores appeared first on Cyber Security News.

Мессенджер начал тестировать замену паспорта цифровой версией.

JLR vs. SLH: Jaguar Land Rover woes worse than previously thought.

The post Jaguar Land Rover Admits to Longer Shutdown as Childish Hackers Troll Carmaker appeared first on Security Boulevard.

Alleged Sale of Unauthorized Access to an Unidentified Fashion Store in India

Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated worm-style campaign dubbed 'Shai-Hulud' started yesterday with the compromise of the @ctrl/tinycolor npm package, and has now expanded to CrowdStrike's npm namespace. [...]

The announcement comes weeks after the parents of a teenager who killed himself sued the tech giant for allegedly helping their son draft a suicide note and giving him tips for how to do so most effectively.

Alleged Sale of U.S. Driver’s Licenses, Selfies, and Taxpayer Documents