A new supply chain attack has surfaced targeting software developers who work with AI coding tools. On March 20, 2026, a threat actor published a malicious npm package named gemini-ai-checker under the account gemini-check, presenting it as a simple utility to verify Google…
Hackers Exploit Kubernetes Misconfigurations to Move From Containers to Cloud Accounts
Kubernetes has become one of the most widely used platforms for managing containerized applications in enterprise environments. But as its adoption has grown, so has the attention it draws from malicious actors. Threat actors are now exploiting misconfigurations within Kubernetes…
New BPFDoor Variants Use Stateless C2 and ICMP Relays to Evade Detection
A dangerous Linux backdoor called BPFDoor has returned in a more powerful form, with researchers uncovering new variants built to stay invisible inside critical network infrastructure. Linked to a China-nexus threat actor group known as Red Menshen, these updated versions…
Cracks in the Bedrock: Escaping the AWS AgentCore Sandbox
Unit 42 uncovers critical vulnerabilities in Amazon Bedrock AgentCore’s sandbox, demonstrating DNS tunneling and credential exposure. The post Cracks in the Bedrock: Escaping the AWS AgentCore Sandbox appeared first on Unit 42. This article has been indexed from Unit 42…
Top 11 Dark Web Monitoring Tools to Secure Your Identity
Compare the top dark web monitoring tools to secure your personal data, prevent identity theft and find a solution that fits your needs and budget. The post Top 11 Dark Web Monitoring Tools to Secure Your Identity appeared first on…
IT Security News Hourly Summary 2026-04-08 00h : 1 posts
1 posts were published in the last hour 21:55 : IT Security News Daily Summary 2026-04-07
IT Security News Daily Summary 2026-04-07
183 posts were published in the last hour 21:4 : Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution 21:4 : Cyber Fraud Cost Americans $17 Billion in 2025, AI Scams Make List: FBI 20:36 : Iran-Linked Hackers Are…
Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution
Attackers are exploiting a critical Flowise flaw, tracked as CVE-2025-59528 (CVSS score of 10), that lets them run malicious code and access systems due to poor validation of user-supplied JavaScript. Attackers are actively exploiting a critical vulnerability in Flowise, tracked as CVE-2025-59528,…
Cyber Fraud Cost Americans $17 Billion in 2025, AI Scams Make List: FBI
Cyber-driven fraud – from investment schemes to business email compromise (BEC) to confidence and romance scams – accounted for almost 85% of the losses Americans suffered through fraud crimes last year, accounting for an eye-watering $17.7 billion in money stolen,…
Iran-Linked Hackers Are Sabotaging US Energy and Water Infrastructure
As Trump threatens Iranian infrastructure, the US government warns that Iran has carried out its own digital attacks against US critical infrastructure. This article has been indexed from Security Latest Read the original article: Iran-Linked Hackers Are Sabotaging US Energy…
Iranian hackers are targeting American critical infrastructure, US agencies warn
A joint FBI, NSA, and CISA advisory warns that Iranian hackers have ‘escalated’ their tactics in response to the ongoing U.S.-Israel war with Iran. This article has been indexed from Security News | TechCrunch Read the original article: Iranian hackers…
Hundreds of orgs compromised daily in Microsoft device code phishing attacks
Who needs MFA when you’ve got EvilTokens? Hundreds of organizations have been compromised daily by a Microsoft device-code phishing campaign that uses AI and automation at nearly every stage of the attack chain to ultimately snoop through corporate email inboxes…
Iranian hackers are targeting American critical infrastructure, U.S. agencies warn
A joint FBI, NSA and CISA advisory warns that Iranian hackers have ‘escalated’ their tactics in response to the ongoing U.S.-Israel war with Iran. This article has been indexed from Security News | TechCrunch Read the original article: Iranian hackers…
Anthropic Unveils Restricted AI Cyber Model in Unprecedented Industry Alliance
Anthropic introduced a new cybersecurity initiative that reflects both the promise and the deep unease surrounding AI, enlisting a rare alliance of industry heavyweights including Amazon, Microsoft, Apple, Google, and NVIDIA. The program, known as Project Glasswing, brings these firms…
Trump’s Proposed CISA Cuts Spark Alarm Among Cybersecurity Experts
Trump’s proposed budget cuts to CISA raise concerns about U.S. cyber defense, as experts warn of reduced collaboration and threat intelligence sharing. The post Trump’s Proposed CISA Cuts Spark Alarm Among Cybersecurity Experts appeared first on TechRepublic. This article has…
Hackers Exploit Next.js React2Shell Flaw to Steal Credentials From 766 Hosts in 24 Hours
A dangerous cyberattack campaign is actively hitting web applications across the internet at a frightening speed. Hackers are exploiting a critical security flaw called React2Shell, targeting websites built on the widely used Next.js framework. In just 24 hours, attackers broke…
Top Cloud Privileged Access Management Best Practices to Prevent Privilege Abuse
Privileged access abuse is behind most major cloud breaches. And it’s not always a sophisticated attacker – sometimes it’s a misconfigured service account that nobody reviewed in two years, or an IAM role inherited from an acquisition that was never…
[un]prompted 2026 – When Passports Execute: Exploiting AI Driven KYC Pipelines
Author, Creator & Presenter: Sean Park, Principal Threat Researcher, TrendAI Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations’) YouTube Channel. Permalink The post [un]prompted 2026 – When…
Microsoft 365 Accounts Targeted in Large Iran-Linked Cyber Campaign
A cyber operation believed to be linked to Iranian threat actors has been identified targeting Microsoft 365 environments, with a primary focus on organizations in Israel and the United Arab Emirates. The activity comes amid ongoing tensions in the Middle…
Threat Actors Exploit GitHub as C2 in Multi-Stage Attacks Attacking Organizations in South Korea
GitHub attacked by state-sponsored hackers Cyber criminals possibly linked with the Democratic People’s Republic of Korea (DPRK) have been found using GitHub as a C2 infrastructure in multi-stage campaigns attacking organizations in South Korea. The operation chain involves hidden Windows…
Anthropic Teams Up With Its Rivals to Keep AI From Hacking Everything
The AI lab’s Project Glasswing will bring together Apple, Google, and more than 45 other organizations. They’ll use the new Claude Mythos Preview model to test advancing AI cybersecurity capabilities. This article has been indexed from Security Latest Read the…
Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks
New AI model drives Project Glasswing, a effort to secure critical software before advanced capabilities fall into the wrong hands. The post Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks appeared first on SecurityWeek. This article…
Cybercrime losses break the $20 billion mark
Online crime continues to generate rising financial losses, with totals reaching $20.877 billion in 2025. The FBI’s Internet Crime Complaint Center (IC3) report shows a 26% increase in total reported losses from the previous year. (Source: FBI) More than one…
IT Security News Hourly Summary 2026-04-07 21h : 10 posts
10 posts were published in the last hour 18:34 : A Little Bit Pivoting: What Web Shells are Attackers Looking for?, (Tue, Apr 7th) 18:34 : Building AI defenses at scale: Before the threats emerge 18:10 : Hackers Pose as…