A US MQ-4C surveillance drone retreated after being confronted by Iranian fighter jets near Iran’s airspace on Monday night, according to a report by Fars News Agency.
The GitHub Action tj-actions/changed-files was compromised, enabling attackers to extract secrets from repositories using the CI/CD workflow. Researchers reported that threat actors compromised the GitHub Action tj-actions/changed-files, allowing the leak of secrets from repositories using the continuous integration and continuous delivery CI/CD workflow. The tj-actions/changed-files GitHub Action is used in over 23,000 repositories, it automates workflows by […]
The news emphasizes repeatedly that this Tesla didn’t live in the house, or even the neighborhood, where it crashed. Non-representative? Unauthorized? It seems more like a rogue robot released by Elon Musk, a DOGE “fail fast” loiterin…
Here’s a buried lede about where to focus security, which I’m positive was strategically placed by law enforcement officers signaling a preference for truth in justice. District Attorney Nathan J. Hochman announced today that felony charges…
The recent study “Coal Ash Resources and Potential for Rare Earth Element Production in the United States” reveals a novel approach to reduce foreign dependence on critical mineral supply. The source? Burned coal, its ash waste. Coal ash, t…
In its latest research report, cybersecurity firm Veriti has spotted active exploitation of a vulnerability within OpenAI’s ChatGPT…
As security professionals, we’re tasked with balancing urgent operational needs against fundamental legal and ethical frameworks. The recent deportation case involving the Trump administration’s invocation of the 1789 Alien Enemies Act repr…
Medusa ransomware now operates as a RaaS model, recruiting affiliates from criminal forums to launch attacks, encrypt data, and extort victims worldwide.
StilachiRAT: Sophisticated malware targets crypto wallets & credentials. Undetected, it maps systems & steals data. Microsoft advises strong security measures.
Threat actors began exploiting a recently disclosed Apache Tomcat vulnerability immediately after the release of a PoC exploit code. A newly disclosed Apache Tomcat vulnerability, tracked as CVE-2025-24813, is being actively exploited just 30 hours after a public PoC was released. The issue is a path equivalence flaw in Apache Tomcat that allows remote code execution […]