More results...
China-linked APT ‘Salt Typhoon’ exploited known router flaws to maintain persistent access across telecom, government, and military networks, giving Beijing’s intelligence services global surveillance reach.
The post China’s Salt Typhoon Hacked Critica…
With more than 4 million weekly downloads, the Nx build platform became the first known supply chain breach where hackers weaponized AI assistants for data theft.
The post Hackers Target Popular Nx Build System in First AI-Weaponized Supply Chain Attac…
Proof-of-concept ransomware uses AI models to generate attack scripts in real time.
The post PromptLock: First AI-Powered Ransomware Emerges appeared first on SecurityWeek.
Researchers unveil OneFlip, a Rowhammer-based attack that flips a single bit in neural network weights to stealthily backdoor AI systems without degrading performance.
The post OneFlip: An Emerging Threat to AI that Could Make Vehicles Crash and Facial…
Farmers New World Life Insurance and Farmers Group have filed separate data breach notifications with state authorities.
The post Farmers Insurance Data Breach Impacts Over 1 Million People appeared first on SecurityWeek.
Dubbed Operation Serengeti 2.0, the operation took place between June and August.
The post Large Interpol Cybercrime Crackdown in Africa Leads to the Arrest of Over 1,200 Suspects appeared first on SecurityWeek.
In January 2024, the UK Cabinet Office issued a new Procurement Policy Note (PPN 01/24) aimed at strengthening cybersecurity across the public sector supply chain. The policy, which came into effect on 1 April 2024, sets out new requirements for suppliers bidding on central government contracts. Most notably, organisations bidding for contracts worth £5 million […]
The post PPN 01/24: What It Means and How Businesses Can Prepare appeared first on IT Security Guru.
Instead of GPT-5 Pro, your query could be quietly redirected to an older, weaker model, opening the door to jailbreaks, hallucinations, and unsafe outputs.
The post GPT-5 Has a Vulnerability: Its Router Can Send You to Older, Less Safe Models appeared …
Workday, a leading provider of human resources and financial management software, has confirmed that it fell victim to a data breach stemming from a social engineering attack targeting a third-party Customer Relationship Management (CRM) system. According to the company, the breach did not impact its customer tenants or the secure data therein; instead, the compromised […]
The post Workday Discloses Data Breach Following CRM-Targeted Social Engineering Attack appeared first on IT Security Guru.
Black Duck has released a new GitHub App designed to make it easier for development and security teams to automate security testing across their repositories. Now available in the GitHub Marketplace, the Black Duck Security GitHub App integrates with Polaris, Black Duck SCA, and Coverity, streamlining both onboarding and continuous synchronisation of GitHub repositories. The […]
The post Black Duck Debuts GitHub App to Automate Security Scans at Scale appeared first on IT Security Guru.