Cruise giant Carnival has suffered yet another data breach, with ShinyHunters claiming to have stolen personal data affecting nearly 6 million people. This article has been indexed from Malwarebytes Read the original article: Carnival confirms data breach impacting nearly 6…
Carnival confirms ShinyHunters cruised off with 6M customer records after April breach
Travel and leisure giant was just one of many victims of the cybercrooks’ crime spree this year This article has been indexed from www.theregister.com – Articles Read the original article: Carnival confirms ShinyHunters cruised off with 6M customer records after…
Qevlar’s new AI agents correlate CVEs, incident data, and active exploitation signals
Qevlar has announced a new set of AI agents designed to bridge the disconnect between Security Operations Centers (SOCs) and vulnerability management teams. The new capabilities help security teams correlate CVEs with live incident data for real-time risk prioritization, automatically…
Digimarc adds provenance, audit, and verification controls for AI agent workflows
Digimarc has announced new provenance and verification infrastructure designed to secure autonomous and AI-enabled workflows. As enterprises increasingly adopt AI systems capable of generating content, orchestrating workflows, and taking action with minimal human intervention, establishing trusted provenance and verifiable authenticity…
Qumulo NeuralProtect uses AI to detect and stop ransomware before encryption
Qumulo has unveiled Qumulo NeuralProtect, a ransomware resilience solution built to protect data at the storage layer by detecting and stopping threats before data is encrypted, corrupted, or lost. Integrated directly into the Qumulo Data Platform, NeuralProtect inspects every file…
OpenAI prepares ChatGPT for the election misinformation wave
AI-generated election misinformation could shape public opinion and influence the lives of millions of people. To address those risks, OpenAI outlined a series of safeguards ahead of the 2026 election cycle. The company said its efforts will focus on helping…
New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI “Power users”
State of AI Usage Report 2026 (full report here) by LayerX Security reveals the extent of the enterprise AI visibility gap and why most organizations still don’t understand where their AI exposure is actually coming from. The research shows that…
VaultJacking: Google Password Manager PIN Compromise
A new phishing technique named VaultJacking has been disclosed by security researchers, demonstrating a critical vulnerability in how Google Password Manager protects stored credentials. This article has been indexed from CyberMaterial Read the original article: VaultJacking: Google Password Manager PIN…
Fake ChatGPT site delivers malware to Windows/Mac
A sophisticated phishing operation is targeting users searching for ChatGPT downloads, distributing platform-specific malware through a fake website that closely mimics OpenAI’s official download page. This article has been indexed from CyberMaterial Read the original article: Fake ChatGPT site delivers…
Motorola Smart Feed App Hijacks Amazon Shopping
Motorola has disabled functionality in its preinstalled Smart Feed app after security researchers and users discovered it was intercepting Amazon Shopping app launches to insert affiliate referral codes without user consent. This article has been indexed from CyberMaterial Read the…
Silent Ransom Group Targets Law Firms
A threat actor known as the Silent Ransom Group is conducting targeted attacks against US law firms using sophisticated social engineering techniques that bypass traditional ransomware detection methods. This article has been indexed from CyberMaterial Read the original article: Silent…
Dutch Police Arrest Ajax Hacking Suspect
Dutch National Police have arrested a 35-year-old suspect from the municipality of Buren in connection with unauthorized access to the computer systems of Amsterdam football club AFC Ajax. This article has been indexed from CyberMaterial Read the original article: Dutch…
New Edamame Platform Aims to Catch AI Coding Agents Going Off the Rails
France-based startup Edamame says its runtime verification platform uses host telemetry and AI analysis to detect coding-agent “intent drift,” secret theft and supply-chain attacks in real time. The post New Edamame Platform Aims to Catch AI Coding Agents Going Off…
Microsoft Condemns “Uncoordinated” Zero Day Disclosures
Microsoft warned the disclosure of several unpatched vulnerabilities without notice has put “customers at unnecessary risk” This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Condemns “Uncoordinated” Zero Day Disclosures
A Fake UK Visa Site Left 100,000 Passports Wide Open
A third-party UK visa site exposed passports and selfies on a public AWS server. It’s not official GOV.UK and affected at least 100,000 documents. UK Visa Portal is not run by the British government. It’s a third-party service, apparently operated…
Your Windows PC has a security deadline in June 2026
Windows is replacing old Secure Boot certificates, and some older PCs could miss future security protections if the update fails. This article has been indexed from Malwarebytes Read the original article: Your Windows PC has a security deadline in June…
Raising the Cybersecurity Stakes: Ante up for the Agentic Era
CISOs are now facing machine-speed attacks and asking, “How do I agent?” The industry must provide remediation at scale. The post Raising the Cybersecurity Stakes: Ante up for the Agentic Era appeared first on SecurityWeek. This article has been indexed…
Gitea Vulnerability Exposed 30,000 Deployments to Attacks
The security flaw allowed attackers to pull private container images, exposing source code, credentials, and infrastructure. The post Gitea Vulnerability Exposed 30,000 Deployments to Attacks appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
New Threat Actor Jinx-0164 Targets Crypto Developers on macOS
New actor Jinx-0164 hit crypto developers with fake recruiter lures and macOS malware This article has been indexed from www.infosecurity-magazine.com Read the original article: New Threat Actor Jinx-0164 Targets Crypto Developers on macOS
VaultJacking Attack Exposes Google Password Vaults via Single PIN
A newly disclosed phishing technique dubbed “VaultJacking” is raising serious concerns across the cybersecurity community after researchers demonstrated how a single captured Google Password Manager (GPM) PIN can expose an entire user credential vault. The attack shows that even passkeys…
Fake ChatGPT download site infects Windows and Mac users with malware
Searching for ChatGPT? This fake download site serves malware to both Windows and Mac users, using separate payloads tailored to each platform. This article has been indexed from Malwarebytes Read the original article: Fake ChatGPT download site infects Windows and…
2026 World Cup: Discussing The World’s Biggest Game’s Attack Surface
The 2026 World Cup presents major cyber risks from ransomware groups, state-aligned actors, and other groups targeting critical infrastructure. Learn more here. The post 2026 World Cup: Discussing The World’s Biggest Game’s Attack Surface appeared first on Unit 42. This…
AI-Generated npm Malware Leaks Hacker’s Private GitHub Token
A newly discovered malicious npm package is drawing attention across the cybersecurity community after inadvertently exposing its own operator’s private GitHub token. Identified by OX Security researchers, the package, named mouse5212-super-formatter, operates as an infostealer that silently exfiltrates sensitive files from…
Gitea Container Registry Vulnerability Could Lead to Private Image Exposure
A critical vulnerability, tracked as CVE-2026-27771, has been discovered in Gitea’s built-in container registry, allowing unauthenticated remote attackers to access private container images without credentials. This flaw poses a serious risk as it can expose sensitive application data, including source…