Tag: emerging threats
3129 articles
OpenAI Unveils GPT-5.4-Cyber Model to Bolster Defensive Cybersecurity Measures
OpenAI's new GPT-5.4-Cyber model is a game-changer in defensive cybersecurity measures, offering a powerful tool to help organizations outsmart cyber threats. By harnessing AI to defend networks, OpenAI is challenging the status quo and raising important questions about the future of cyber risk management.
Ransomware Breach Exposes 337,000 CRMC Patients' Sensitive Data
A ransomware attack on a Tennessee hospital system has compromised the sensitive data of over 337,000 patients, leaving many to wonder who will watch over their personal records. In July 2025, Cookeville Medical Center (CRMC) reported a devastating breach tied to the notorious Rhysida group.
US Pair Sentenced for Aiding North Korea in $5 Million IT Worker Scam
Two Americans have been sentenced to a combined 200 months in prison for their role in a four-year scam that funneled roughly $5 million to North Korea by targeting Fortune 500 companies and a US defense contractor with fraudulent IT worker schemes. The shocking case reveals how these individuals became unwitting accomplices to a foreign regime's lucrative deception.
AI-Powered SOCs Fall Short on Automation
Despite the promise of AI-powered SOCs to revolutionize security operations, many teams are still drowning in work, with automation tools mainly speeding up triage rather than reducing their actual workload. The result? Faster summaries, not fewer tasks, leaving analysts to wonder if AI is truly a solution or just a speed boost.
Zero-Day Exploits Multiply as Hacker Creativity Surges
Feeling overwhelmed by the endless stream of cybersecurity threats? Every Thursday morning, you're faced with a daunting question: how to stay informed without getting bogged down by a never-ending parade of old and new threats.
ATHR Platform Exploits AI Voice Agents for Automated Vishing Attacks
Imagine a phone call that's both automated and coached by a human - a new cybercrime platform called ATHR is making this a terrifying reality, using AI voice agents to fuel highly convincing vishing attacks that can steal your credentials. By combining automation with human and synthetic voices, ATHR is taking voice phishing to a whole new level of sophistication.
AI Code Reviewer Vulnerable to Git Identity Spoofing
Imagine a security system that can be tricked into trusting a foe as a friend with just two lines of code - that's what happened with Anthropic's AI code reviewer, Claude, which was vulnerable to Git identity spoofing. This simple hack allowed researchers to forge a trusted developer's identity and get hostile code approved in no time.
NIST Shifts Focus to Enriching Exploited Vulnerabilities
The National Vulnerability Database is shifting gears: going forward, it'll prioritize enriching newly reported and actively exploited vulnerabilities, temporarily deprioritizing older entries. This change comes as the database faces an unprecedented surge in reported software flaws, with a record number of Common Vulnerabilities and Exposures (CVEs) submitted.
AI Hallucinations Expose Organizations to 'Ghost Breach' Risk
Imagine a scenario where a cutting-edge technology lies to you, and you believe it - leading to a frantic response to a crisis that never existed. AI hallucinations are exposing organizations to a new kind of risk, dubbed "ghost breaches," where fabricated threats trigger real-life emergency responses.
AI Models Accelerate Vulnerability Discovery, Pressing Defenders to Adapt
The double-edged sword of AI: while it's being used to help developers, it's also become a powerful tool for attackers to rapidly discover and exploit software flaws, forcing defenders to scramble to keep up. As AI-powered vulnerability discovery accelerates, the pressure is on for defenders to adapt and harden legacy systems before it's too late.
AI Bolsters Software Security with Enhanced SAST Accuracy
Can artificial intelligence revolutionize software security by supercharging SAST accuracy and making testing a breeze for developers? By harnessing the power of AI, organizations can potentially transform the way they identify and fix vulnerabilities, without slowing down their software builders.
McGraw Hill Data Leak Exposes 13.5M Records After Salesforce Misconfiguration
McGraw Hill, a leading publisher of educational materials, recently suffered a significant data leak, exposing a staggering 13.5 million records due to a misconfigured Salesforce-hosted page. This alarming breach highlights the importance of robust data security measures, even for companies with a traditional focus like textbook publishing.
Taboola Exploits Banking Sessions to Route Users to Temu Tracking Endpoint
Imagine a single line of code secretly redirecting people logged into their bank accounts to a commercial tracking site - that's what happened when a bank unknowingly approved a Taboola pixel that sent users to a Temu tracking endpoint. This sneaky exploit slipped past security controls, leaving both the bank and its users none the wiser.
Obsidian Plugin Abuse Enables PHANTOMPULSE RAT in Finance, Crypto Attacks
Beware of the notebook that's supposed to keep your secrets safe - researchers have discovered a sneaky new attack that uses Obsidian plugin abuse to slip a powerful Trojan into your system. This novel social engineering campaign targets finance and crypto sectors with a previously unknown RAT called PHANTOMPULSE.
Cisco Fixes Flaws Enabling Code Execution in Identity Services, Webex
Cisco has patched four critical vulnerabilities in its Identity Services and Webex Services, which could have allowed attackers to run arbitrary code and impersonate any user, posing a massive security risk. The fixes address flaws with CVSS scores as high as 9.8, safeguarding against devastating attacks.
Cisco Fixes Webex Flaw Requiring Urgent Customer Action
Cisco has patched four critical vulnerabilities in its Webex Services, but one flaw requires your immediate attention - and action - to complete the fix. Don't leave your Webex Services exposed: take the necessary steps now to ensure you're fully protected.
MCP Protocol Flaw Exposes Millions to Server Vulnerability
A newly discovered flaw in the widely-used MCP protocol has been exposed, putting a staggering 150 million downloads and up to 200,000 servers at risk of vulnerability. This systemic weakness, identified by Ox Security, has far-reaching implications for the security of millions of users worldwide.
McGraw Hill Breach Exposes 13.5 Million User Accounts
A massive data breach at McGraw Hill has exposed the personal and academic records of 13.5 million students and educators, leaving them vulnerable to exploitation by the ShinyHunters extortion group. The breach, which targeted McGraw Hill's Salesforce environment, has raised urgent concerns about digital security and data protection in the education sector.
Microsoft Offers Lifeline for Laggard Exchange, Skype Customers
Microsoft is throwing a lifeline to organizations still relying on outdated Exchange Server and Skype for Business Server, offering extended security updates for a fee to help bridge the gap to newer products. This move acknowledges that some businesses need more time to migrate, providing a temporary safety net for those lagging behind.
Ransomware Targets Carmakers with Growing Ferocity
Ransomware attacks on carmakers have doubled in just one year, now accounting for over two-fifths of all cyber-attacks targeting the industry, signaling a significant shift in the threat landscape. This rapid escalation demands a new level of resilience from firms that design, build, and sell motor vehicles.
Freight Hackers Exploit Code-Signing Service to Bypass Security Defenses
Thieves have found a sneaky way to disguise their malicious tools as trusted software by using a third-party code-signing service, making it harder for defenders to spot the threat. This new tactic allows them to cloak their malware in legitimacy, complicating the work of security teams trying to keep cargo safe from theft.
Physical Security Lapses Expose Sensitive Servers
Your cybersecurity is only as strong as the physical locks on your servers - and a recent case where a server-room lock proved laughably easy to bypass is a stark reminder of this often-overlooked vulnerability. Leaving sensitive servers exposed is like leaving a car with cash in the console unlocked - it's an open invitation for trouble.
US Nationals Jailed for Aiding DPRK IT Workers in Large-Scale Fraud Scheme
Two US nationals have been jailed for helping North Korean IT workers impersonate American residents and land remote jobs at over 100 companies, including many Fortune 500 firms, in a massive fraud scheme that raises serious questions about remote hiring practices. This brazen case exposes vulnerabilities in verifying remote workers' identities and locations.
Microsoft Probes Installation Failures in Latest Windows Server 2025 Update
Microsoft is investigating a frustrating issue with its latest security update, KB5082063, which may refuse to install on some Windows Server 2025 systems, despite being designed to protect them. The company is working to resolve the installation failures and ensure a smooth update experience.