SecurityWeek1d
Bybit Hack Drains $1.5 Billion From Cryptocurrency Exchange
Over 400,000 ETH and stETH worth more than $1.5 billion were stolen from the Bybit cryptocurrency exchange. Cryptocurrency ...
SecurityWeek2d
How China Pinned University Cyberattacks on NSA Hackers
A researcher dives into Chinese reports attributing cyberattacks on Northwestern Polytechnical University to the NSA’s TAO ...
SecurityWeek2d
Cisco Details ‘Salt Typhoon’ Network Hopping, Credential Theft Tactics
Cisco Talos observed Chinese hackers team pivoting from a compromised device operated by one telecom to target a device in ...
SecurityWeek2d
Apple Pulls Advanced Data Protection for New UK Users Amid Backdoor Demand
Apple says can no longer offer end-to-end encrypted cloud backups in the UK and insists it will never build a backdoor or ...
SecurityWeek3d
Atlassian Patches Critical Vulnerabilities in Confluence, Crowd
Atlassian has released patches for 12 critical- and high-severity vulnerabilities in Bamboo, Bitbucket, Confluence, Crowd, ...
SecurityWeek2d
Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls
Palo Alto Networks is warning customers that a second vulnerability patched in February is being exploited in attacks.
SecurityWeek4d
CISO Conversations: Kevin Winter at Deloitte and Richard Marcus at AuditBoard
Interview with Kevin Winter (Global CISO at Deloitte) and Richard Marcus (CISO at AuditBoard) who are top CISOs at major ...
SecurityWeek3d
AI Can Supercharge Productivity, But We Still Need a Human-in-the-Loop
Despite AI's advantages, there are still technology issues, such as hallucinations, and human issues, such as trusting AI ...
SecurityWeek4d
How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying
Mandiant warns that multiple Russian APTs are abusing a nifty Signal Messenger feature to surreptitiously spy on encrypted ...
SecurityWeek3d
How Hackers Manipulate Agentic AI With Prompt Engineering
Prompt engineering is a subtle but powerful attack technique that threat actors use to manipulate, deceive, or compromise AI ...
SecurityWeek3d
Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines
China-linked cyberespionage toolkits are popping up in ransomware attacks, forcing defenders to rethink how they combat state ...
SecurityWeek10d
Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation
Rapid7 finds a new zero-day vulnerability in PostgreSQL and links it to chain of attacks against a BeyondTrust Remote Support ...