Researchers discovered threat activity less than a week after Fortinet disclosed critical vulnerabilities in multiple products. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: FortiGate devices targeted with malicious SSO logins
Category: EN
NIST adds to AI security guidance with Cybersecurity Framework profile
Organizations have a new resource to map AI considerations onto NIST’s most famous security blueprint. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: NIST adds to AI security guidance with Cybersecurity Framework profile
SoundCloud Breach Potentially Affects Millions of Accounts
SoundCloud confirmed a breach that exposed user data through an internal dashboard, potentially affecting millions of accounts. The post SoundCloud Breach Potentially Affects Millions of Accounts appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read…
GNV ferry fantastic under cyberattack probe amid remote hijack fears
French prosecutors probe a suspected cyberattack on GNV ferry Fantastic, raising concerns of a possible remote hijack. French prosecutors are investigating a suspected cyberattack on the GNV ferry Fantastic, raising fears of a potential remote hijack. The ferry Fantastic sails…
NATO’s battle for cloud sovereignty: Speed is existential
Build a digital backbone faster than adversaries can evolve or lose the information war NATO is in an existential race to develop sovereign cloud-based technologies to underpin its mission, the alliance’s Assistant Secretary General for Cyber and Digital Transformation told…
New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails
The threat actor linked to Operation ForumTroll has been attributed to a fresh set of phishing attacks targeting individuals within Russia, according to Kaspersky. The Russian cybersecurity vendor said it detected the new activity in October 2025. The origins of…
APT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing Campaign
The Russian state-sponsored threat actor known as APT28 has been attributed to what has been described as a “sustained” credential-harvesting campaign targeting users of UKR[.]net, a webmail and news service popular in Ukraine. The activity, observed by Recorded Future’s Insikt…
New “Lies-in-the-Loop” Attack Undermines AI Safety Dialogs
A novel attack technique dubbed ”Lies-in-the-Loop” (LITL) has been observed manipulating human approval prompts in agentic AI systems This article has been indexed from www.infosecurity-magazine.com Read the original article: New “Lies-in-the-Loop” Attack Undermines AI Safety Dialogs
New ClickFix Attack Uses Fake Browser Fix to Install DarkGate Malware
Researchers at Point Wild have discovered a new ClickFix attack campaign that tricks users into manually installing DarkGate malware via fake browser extension alerts. Learn how this attack bypasses security by using the Windows Run box and how you can…
Google Chrome Extension is Intercepting Millions of Users’ AI Chats
A Chrome browser extension with 6 million users, as well as seven other Chrome and Edge extensions, for months have been silently collecting data from every AI chatbot conversion, packaging it, and then selling it to third parties like advertisers…
Actively Exploited Fortinet Flaws Enable Security Appliance Takeover
Attackers are actively exploiting Fortinet flaws to bypass authentication and take over security appliances. The post Actively Exploited Fortinet Flaws Enable Security Appliance Takeover appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original…
NATO’s battle for cloud sovereignty: speed is existential
Build a digital backbone faster than adversaries can evovle or lose the information war NATO is in an existential race to develop sovereign cloud based technologies to underpin its mission, the alliance’s Assistant Secretary General for Cyber and Digital Transformation…
Fix SOC Blind Spots: Real-Time Industry & Country Threat Visibility
Modern SOCs are now grappling with a massive visibility problem, essentially “driving through fog” but now with their headlights dimming rapidly. The playbook for many teams is still looking back: analysts wait for an alert to fire, investigate the incident, and…
Chinese Hackers Using Custom ShadowPad IIS Listener Module to Turn Compromised Servers into Active Nodes
The group employs a custom ShadowPad IIS Listener module to transform compromised servers into a resilient, distributed relay network. This approach allows attackers to route malicious traffic through victim infrastructure, effectively turning hacked organizations into a mesh of command-and-control nodes.…
Microsoft Asks IT Admins to Contact for Fix Related to Windows IIS Failure Issues
Microsoft has confirmed that its December 2025 Windows security update (KB5071546, OS Build 19045.6691) is causing Message Queuing (MSMQ) failures, leading to widespread IIS site crashes. First reported on December 12 and last updated December 16, the problem manifests under…
Rockrose Development Notifies Over 47,000 People of July 2025 Data Breach Linked to Play Ransomware Gang
Rockrose Development confirmed over the weekend that it has notified 47,392 individuals about a data breach that occurred in July 2025. The incident exposed sensitive personal information belonging to both residents and employees. According to the company, the compromised…
Critical FreePBX Vulnerabilities Expose Authentication Bypass and Remote Code Execution Risks
Researchers at Horizon3.ai have uncovered several security vulnerabilities within FreePBX, an open-source private branch exchange platform. Among them, one severity flaw could be exploited to bypass authentication if very specific configurations are enabled. The issues were disclosed privately to…
Attackers are exploiting auth bypass vulnerability on FortiGate firewalls (CVE-2025-59718)
Attackers are exploiting a recently revealed vulnerability (CVE-2025-59718) to bypass authentication on Fortinet’s FortiGate firewalls, and are leveraging the achieved access to export their system configuration files, Arctic Wolf researchers warned on Tuesday. Configuration files can expose information about the…
ISACA Named Global Credentialing Authority for DoD’s CMMC Program
ISACA has been appointed by the US DoD as the global credentialing authority for its CMMC program This article has been indexed from www.infosecurity-magazine.com Read the original article: ISACA Named Global Credentialing Authority for DoD’s CMMC Program
Inside a purchase order PDF phishing campaign
A “purchase order” PDF blocked by Malwarebytes led to a credential-harvesting phishing site. So we analyzed the attack and where the data went next. This article has been indexed from Malwarebytes Read the original article: Inside a purchase order PDF…