A state-linked hacking group has been caught running a carefully crafted fake recruitment operation to push custom malware onto unsuspecting victims. The group, known as Nimbus Manticore and also tracked as UNC1549 and Smoke Sandstorm, has a long history of…
OpenAI brings frontier AI to existing AWS environments
OpenAI frontier models and Codex are now available on AWS, giving customers access to OpenAI capabilities within AWS environments and the controls needed to move more quickly from evaluation to deployment. OpenAI capabilities on Amazon Bedrock These capabilities are available…
Cybanetix unveils Managed AI Service to secure users, models, and agents
Cybanetix has announced the launch of its Managed AI Service to address all three aspects of AI use within the enterprise. Covering employee AI usage, AI governance, and embedded AI, the Managed AI Service combines technology from NOMA, SentinelOne, Microsoft,…
KDE Linux security audit cuts kernel modules and unused packages
KDE Linux, the in-progress operating system from the KDE community, removed several kernel modules and software packages after a security audit of the components shipped with the system. The work followed the discovery of multiple security issues in the upstream…
SoftBank Promises €45bn For French AI Hub
Japan’s SoftBank to lead €45bn investment in network of data centres in northern France, after meeting with Macron This article has been indexed from Silicon UK Read the original article: SoftBank Promises €45bn For French AI Hub
34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials
Hackers are actively abusing open-source ecosystems to steal sensitive developer data through a large-scale supply chain attack dubbed “TrapDoor,”. The campaign spans npm, PyPI, and Crates.io, leveraging 34 malicious packages and 384 versions to target developers working in cryptocurrency, DeFi,…
Android Zero-Day Vulnerability Actively Exploited in Device Takeover Attacks
Google has disclosed a critical Android zero-day vulnerability that is reportedly being actively exploited in targeted attacks, raising serious concerns about the risk of large-scale device compromise. The issue, tracked as CVE-2025-48595, was highlighted in the Android Security Bulletin for…
CISA Issues Alert on Oracle WebLogic Server Flaw Under Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Oracle WebLogic Server vulnerability, tracked as CVE-2024-21182, to its Known Exploited Vulnerabilities (KEV) catalog, warning that the flaw is actively exploited in the wild. The alert, published on…
Dashlane Brute-Force Attack Leads to Limited Encrypted Vault Downloads
Dashlane’s security systems automatically locked accounts to protect them against the hacking attempts. The post Dashlane Brute-Force Attack Leads to Limited Encrypted Vault Downloads appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Dashlane…
Infosecurity Europe: Business Leaders Lack Understanding of Threat Intelligence, Study Warns
A new Silobreaker and SANS Institute paper examines the ‘Intelligence-Stakeholder Gap’ and what organizations must do to achieve business buy-in on threat intelligence This article has been indexed from www.infosecurity-magazine.com Read the original article: Infosecurity Europe: Business Leaders Lack Understanding…
Florida Sues OpenAI Over Safety Practices
OpenAI, Sam Altman sued over practices allegedly leading to variety of harms to users, in latest legal action targeting AI platforms This article has been indexed from Silicon UK Read the original article: Florida Sues OpenAI Over Safety Practices
Offline-First Patch Management for 10,000 Edge Nodes: A Practical Architecture That Scales
The Patch That Took Down Black Friday It wasn’t malware. It wasn’t a zero-day exploit. It was a routine patch cycle. The team had scheduled OS updates across 1,200 retail locations for the Tuesday before the busiest shopping week of…
Sensitive government personnel data posted online, Spanish police arrest suspect
The Spanish National Police arrested a man in Granada for allegedly leaking personal data belonging to members of several sensitive state institutions. According to police, the suspect published the information on multiple online platforms, exposing personnel associated with organizations including…
New Wave Of Phishing Emails with SVG Files, (Tue, Jun 2nd)
For a few days, my SANS ISC mailbox is flooded with emails that delivers SVG files. An SVG (“Scalable Vector Graphic”) is a web-friendly vector file format used for graphics and icons. No URL in the body, just “an imageâ€,…
Google Engineer Charged With Insider Trading
Italian engineer allegedly used corporate information on Google searches to place bets on Polymarket, netting $1.2m This article has been indexed from Silicon UK Read the original article: Google Engineer Charged With Insider Trading
Critical StrongDM Flaw Exposes Users to Authentication Token Theft and Reuse
A critical security vulnerability tracked as CVE-2026-4387 has been disclosed in StrongDM, allowing attackers to steal and reuse authentication tokens to gain unauthorized access to infrastructure. The issue, discovered by SpecterOps researcher Hope Walker, affects StrongDM desktop and CLI environments…
Hackers Use Spearphishing to Deploy AZUREVEIL Adaptix C2 Agent
Hackers are actively deploying a sophisticated malware framework dubbed AZUREVEIL, an Adaptix-based command-and-control (C2) agent, through a targeted spearphishing campaign aimed at government and enterprise sectors in the Czech Republic and Taiwan. The attack begins with a malicious ZIP archive delivered…
Oracle’s First Monthly Patches Resolve 77 Vulnerabilities
Oracle’s monthly Critical Security Patch Update (CSPU) rollouts are meant to deliver critical fixes faster. The post Oracle’s First Monthly Patches Resolve 77 Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Oracle’s…
Meta AI hands over Instagram access, Dutch police dismantle botnet, RedHat packages backdoored
Meta AI hands over Instagram account access Dutch police dismantle huge botnet RedHat packages get backdoored Get the show notes here: https://cisoseries.com/meta-ai-hands-over-instagram-access-dutch-police-dismantle-botnet-redhat-packages-backdoored/ Huge thanks to our episode sponsor, Vanta Your team just added its 67th AI tool. And unfortunately, also…
IT Security News Hourly Summary 2026-06-02 09h : 5 posts
5 posts were published in the last hour 7:3 : Man Fined After Claiming Littering Video Was AI-Generated 7:3 : Anthropic Files Confidentially For US IPO 7:2 : RSA extends passwordless authentication to Linux environments 6:32 : SolyxImmortal Malware Steals…
Man Fined After Claiming Littering Video Was AI-Generated
York resident fined £1,023 after he claimed video of him dropping cigarette ends into the street was deepfake This article has been indexed from Silicon UK Read the original article: Man Fined After Claiming Littering Video Was AI-Generated
Anthropic Files Confidentially For US IPO
Anthropic joins expected trio of massive flotations this year, along with SpaceX and OpenAI, amid booming growth This article has been indexed from Silicon UK Read the original article: Anthropic Files Confidentially For US IPO
RSA extends passwordless authentication to Linux environments
RSA has expanded its passwordless authentication capabilities to Linux environments, advancing its goal of delivering secure, password-free access for every user in every environment. Linux is ubiquitous in enterprise infrastructure, powering servers, developer workstations, and critical operational environments across industries…
SolyxImmortal Malware Steals Passwords, Cookies, Files, and Keystrokes
A newly analyzed Python-based information stealer named SolyxImmortal is actively targeting sensitive user data, including browser credentials, cookies, documents, screenshots, and keystrokes. The malware uses common Python libraries and multi-threading techniques to run multiple surveillance and data theft operations simultaneously,…