Iranian hackers claim breach of former Trump official Kash Patel's personal data
An alleged Iranian hacker group, Handala, claims to have breached the personal data of former official Kash Patel, highlighting the persistent threat
A ghost in the machine: The cybersecurity risks of a proposed federal voter list
An analysis of a 2020 proposal for a federal voter list reveals why centralizing election data creates a catastrophic cybersecurity risk.
Dutch Finance Ministry's precautionary shutdown highlights high-stakes government cyber defense
The Dutch Ministry of Finance took its treasury portal offline after an attempted cyberattack, showcasing a proactive but disruptive incident response
Popular Axios npm package compromised to deliver cross-platform malware
Malicious versions of the widely used Axios HTTP client were published to the npm registry, injecting a trojan that targets Windows, macOS, and Linux.
How a single malicious prompt could have hijacked your ChatGPT account
A vulnerability in ChatGPT's web interface could have let attackers steal accounts with a single prompt, highlighting classic web security risks in AI
TrueConf zero-day exploited in attacks targeting Southeast Asian governments
A high-severity flaw in TrueConf video conferencing software was exploited as a zero-day to deliver malicious updates to government networks in Southe
F5 BIG-IP vulnerability under active attack after RCE discovery
A critical F5 BIG-IP vulnerability (CVE-2023-46747) is under active attack, allowing unauthenticated attackers to gain full system control.
Block the prompt, not the work: The end of 'Doctor No'
The traditional 'Doctor No' security approach of blocking new tools is failing. The rise of AI and shadow IT is forcing a shift to secure enablement.
Claude Code source leaked via npm packaging error, Anthropic confirms
Anthropic confirmed an accidental leak of its Claude Code AI assistant's source code due to a packaging error, exposing intellectual property.
Google patches Vertex AI flaws that allowed researchers to weaponize AI agents
Researchers discovered vulnerabilities in Google's Vertex AI platform that could lead to data theft and resource abuse. Google has since fixed the iss
At RSAC, the EU leads while US officials are sidelined
At RSAC 2024, a notable absence of senior US officials on the main stage contrasted with a powerful EU presence, signaling a potential shift in global
‘CanisterWorm’ springs a destructive wiper attack targeting Iran
A new destructive worm, CanisterWorm, is targeting Iran by spreading through insecure cloud services and wiping data, marking a dangerous new trend.











