SecurityWeek

Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking

Cordyceps, a systemic class of exploitable CI/CD vulnerabilities, allows unauthenticated attackers to hijack developer ...
Infosecurity Magazine

macOS Backdoor Uses Prompt Injection to Evade AI Triage

A North Korea-linked macOS backdoor has been caught hiding a prompt injection that targets malware analyst's AI tools, rather ...
Tech Times

Stolen Passwords: Europol Seizes 27M Credentials in Infostealer Takedown

Operation Endgame malware takedown seized 326 servers, froze $47M in criminal cryptocurrency, and recovered 27 million stolen ...
GB News on MSN

Buying GTA 6? Watch out for this major scam targeting gamers worldwide

Cybercriminals are having a field day with the massive excitement surrounding preorders of Grand Theft Auto VI (GTA 6), and ...
LinkedIn

Cisco's WebDialer Just Opened a Root Door. A Zombie Fungus Hit Microsoft and Google's CI. And Uncle Sam Started a Quantum Countdown.

A phone feature just turned into a root exploit. A fungus that hijacks ants gave its name to a bug inside Microsoft and Google's build pipelines. Washington put a five-year countdown clock on your ...
The Hacker News

Malware | Breaking Cybersecurity News | The Hacker News

This week was a reminder that attackers do not always need big tricks. One small mistake, one old access path, one missed patch, and suddenly the door is open. The noise is not all noise, either.
Crowdfund Insider

Chainalysis Shares Insights on $7.5 Million Reverse Honeypot Exploit Against Ethereum’s Top Sandwich Bot

Blockchain analytics firm Chainalysis has published an in-depth examination of a sophisticated exploit that drained at least ...
Live Bitcoin News

Ethereum’s Most Notorious Sandwich Attacker Loses $7.5M: Here’s How

JaredfromSubway.eth lost $7.5M in a honeypot exploit. Chainalysis tracked the funds straight to Tornado Cash. Here's what ...

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

Attacks on Cisco Unified CM observed

At the beginning of the month, Cisco patched a high-risk security vulnerability in Unified Communications Manager. Now it is ...