The SonicWall data breach has triggered urgent scrutiny across the cybersecurity community. SonicWall confirmed an intrusion that targeted cloud-stored backups used by specific services. Early evidence indicates a …
-
-
AI-powered malware is advancing quickly, and Google is warning that some strains now mutate during execution to steal data and evade detection. The Google malware warning highlights runtime …
-
Scattered Spider attacks are stress testing identity centric security across enterprises and service providers. A new webinar details the group’s playbook and effective countermeasures. For context, see this …
-
ConductorOne Series B funding puts 79 million behind an identity governance company that automates enterprise access control at scale. The round will accelerate product development and go to …
-
The Post SMTP plugin vulnerability is under active exploitation, allowing attackers to hijack email flows and seize administrator access. The flaw is tracked as CVE-2024-1071. Researchers report unauthenticated …
-
Jabber Zeus Cybercrime is back in focus as a Ukrainian national was extradited to the United States to face federal charges. Prosecutors tie the case to a long …
-
OpenAI safety panel oversight has shifted as Carnegie Mellon professor Zico Kolter assumes a key role with authority to pause or stop unsafe releases. The OpenAI safety panel …
-
Claude AI security vulnerabilities are drawing urgent attention as researchers show API abuse can exfiltrate sensitive data. Attackers combine prompt manipulation with permissive tool access to siphon secrets …
-
Chinese APT supply chain attacks are back in focus as researchers track a new malware called AirTalk pushed through trusted software channels. The campaign appears designed to infiltrate …
-
China smishing campaign activity has surged, revealing a vast infrastructure that steals banking credentials at scale. Researchers tied the operation to tens of thousands of domains. The China …