Aggregator

A hacker accessed the X account of beloved Sesame Street character Elmo, which included racist and antisemitic posts and a foul tirade about Trump and Jeffrey Epstein. The incident came a week after xAI's Grok chatbot spewed antisemitic and white nationalist messages.

The post Hacked Elmo X Account Spews Racist, Antisemitic Posts appeared first on Security Boulevard.

Iran’s Islamic Revolutionary Guard Corps (IRGC) has increased its asymmetric cyber operations in response to recent U.S. attacks on Iranian nuclear sites. Intelligence Group 13 has emerged as a major aggressor in attacking critical infrastructure in the United States. This elite unit, embedded within the Shahid Kaveh Cyber Group, operates at the nexus of tactical […]

The post Iranian Threat Actors Target U.S. Critical Infrastructure, Including Water Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Palo Alto Networks today extended its alliance with Okta to provide deeper integrations to enable cybersecurity teams to restrict which applications can be accessed from a secure browser.

The post Palo Alto Networks Extends Zero-Trust Alliance with Okta appeared first on Security Boulevard.

A sophisticated new ransomware-as-a-service operation has emerged with advanced AI-powered negotiation capabilities and mobile management features, targeting organizations across healthcare, automotive, and industrial sectors. GLOBAL GROUP, operated by threat actor “$$$”, has claimed 17 victims across multiple countries since its June 2025 launch, demonstrating rapid operational scaling through automated systems and strategic partnerships with Initial […]

The post GLOBAL GROUP RaaS Operators Enable AI-powered Negotiation Functionality appeared first on Cyber Security News.

A critical security vulnerability has been discovered in Kafbat UI, a popular web-based interface for managing Apache Kafka clusters, allowing unauthenticated attackers to execute arbitrary code on affected systems through unsafe deserialization attacks. Critical Vulnerability Details The vulnerability, designated as CVE-2025-49127, affects Kafbat UI version 1.0.0 and stems from the application’s dynamic cluster configuration functionality […]

The post Kafbat UI Vulnerabilities Allow Arbitrary Code Execution via JMX Services appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

GitGuardian, the leader in automated secrets detection and remediation, today announced the launch of its Model Context Protocol (MCP) Server, a powerful new infrastructure designed to bring AI-assisted secrets security directly into developer environments. As intelligent agents begin to reshape the software development landscape, GitGuardian’s MCP server marks a pivotal shift in aligning security practices with […]

The post GitGuardian Launches MCP Server to Bring Secrets Security into Developer Workflows appeared first on Cyber Security News.

You must login to view this content

UEFI firmware running on 100+ Gigabyte motherboard models is affected by memory corruption vulnerabilities that may allow attackers to install persistent and difficult-to-detect bootkits (i.e., malware designed to infect the computer’s boot process). “While AMI (the original firmware supplier) has indicated that these vulnerabilities were previously addressed, they have resurfaced in Gigabyte [OEM firmware builds] and are now being publicly disclosed,” Carnegie Mellon University’s CERT Coordination Center (CERT/CC) has warned on Friday. The Gigabyte UEFI … More →

The post Vulnerable firmware for Gigabyte motherboards could allow bootkit installation appeared first on Help Net Security.

The Octalyn Forensic Toolkit, which is openly accessible on GitHub, has been revealed as a powerful credential stealer that poses as a research tool for red teaming and digital forensics. This is a worrying development for cybersecurity. Developed with a C++-based payload module and a Delphi-built graphical user interface (GUI) builder, the toolkit lowers the […]

The post Octalyn Stealer Harvests VPN Configs, Passwords, and Cookies in Organized Folder Structure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly surfaced Ransomware-as-a-Service operation, dubbed GLOBAL GROUP, has begun deploying an AI‐driven negotiation tool that elevates the psychological pressure on victims and streamlines extortion workflows for affiliates. Security researchers at EclecticIQ first identified GLOBAL GROUP’s activity in early June on the Ramp4u underground forum, where the threat actor known as “$$$” shared an onion […]

The post GLOBAL GROUP RaaS Adds AI-Powered Negotiation Feature for Ransom Demands appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

F5 announced new tools to reduce the immense complexity cross-functional operations (XOps) teams face in managing hybrid, multicloud, and AI-driven application environments. F5 AI Assistant now provides a single natural language interface across F5 BIG-IP, F5 NGINX One, and F5 Distributed Cloud Services offerings to unify the user experience throughout the F5 Application Delivery and Security Platform (ADSP). As a new feature for the AI Assistant, F5 iRules code generation introduces a scalable, automated solution … More →

The post F5 accelerates application delivery and security appeared first on Help Net Security.