Aerospace firm agrees to buy company behind popular AI coding tool in all-stock deal in boost to its AI ambitions This article has been indexed from Silicon UK Read the original article: SpaceX To Buy Cursor In $60bn Deal
Tag: EN
15 Malicious JetBrains Plugins Caught Stealing DeepSeek, OpenAI API Keys
Hackers are using 15 malicious JetBrains plugins posing as AI coding assistants to steal DeepSeek, OpenAI, and other developer API keys. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article:…
China-Linked FishMonger Ports SprySOCKS to Windows With Kernel-Level Stealth and UEFI Bootkit Hints
China-linked FishMonger used two SprySOCKS Windows variants that leveraged kernel drivers and the Print Spooler to target governments in four countries. ESET researchers have found two previously undocumented Windows versions of SprySOCKS, a backdoor that the security community had until…
Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities
The browser updates address multiple memory safety bugs that could potentially lead to remote code execution. The post Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
Ofcom Warns Over Enforcement Of Youth Social Media Ban
Media regulator says finding effective way to keep children under 16 off social platforms remains unknown territory This article has been indexed from Silicon UK Read the original article: Ofcom Warns Over Enforcement Of Youth Social Media Ban
Hacking Group Claims Credit For Novo Nordisk Breach
Gang says it stole data on unreleased drugs, clinical trials from Danish pharmaceutical giant after failed $25m ransom demand This article has been indexed from Silicon UK Read the original article: Hacking Group Claims Credit For Novo Nordisk Breach
Steam Workshop Malware Campaign Uses Wallpaper Engine to Steal Accounts and Infect Gamers
A sophisticated malware campaign has been abusing Steam Workshop’s sharing model to distribute backdoors, infostealers and crypto miners hidden inside Wallpaper Engine packages, primarily targeting gamers in China and Russia. The campaign exploits Wallpaper Engine’s “application” wallpaper type essentially standalone…
7-Year-Old OpenBSD Security Flaw Exposes Systems to Full PAP Authentication Bypass
A significant authentication flaw has been discovered in the PPP stack of OpenBSD, allowing attackers to bypass the Password Authentication Protocol (PAP) validation and gain unauthorized network access. Although this vulnerability was patched in June 2026, it originated from legacy…
AIRecon: AI-Powered Penetration Testing Tool with Kali Linux Sandbox
AIRecon is an autonomous penetration testing agent that runs entirely offline, combining a self-hosted Ollama LLM with a Kali Linux Docker sandbox to automate end-to-end security assessments without exposing any data to the cloud. Developed by researcher pikpikcu, it eliminates…
Fortinet FortiSOC unifies SIEM, SOAR, threat intelligence, and AI in one platform
Fortinet has announced the availability of FortiSOC, a unified, cloud-delivered security operations center (SOC) platform. FortiSOC brings together six security operations functions into a single Software-as-a-Service (SaaS) experience and embeds agentic AI to autonomously investigate and correlate alerts across assets…
144 Mastra npm Packages Compromised via Hijacked Contributor Account
As many as 144 npm packages associated with the Mastra namespace (“@mastra/*”), a popular open-source JavaScript and TypeScript framework for building artificial intelligence (AI) applications, have been compromised as part of a software supply chain attack codenamed easy-day-js, per findings…
Snap Debuts $2,195 Augmented Reality Glasses
Snapchat parent bets on pricey Snap Specs with dual displays that place digital imagery into wearer’s field of vision This article has been indexed from Silicon UK Read the original article: Snap Debuts $2,195 Augmented Reality Glasses
CISA Issues Alert on Oracle PeopleSoft Vulnerability Exploited by Ransomware Groups
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding the active exploitation of a critical vulnerability in Oracle PeopleSoft Enterprise PeopleTools, identified as CVE-2026-35273. This vulnerability, categorized as CWE-306 (Missing Authentication for Critical Function), allows…
Joomla, LiteSpeed Vulnerabilities Exploited in Attacks
The flaws allow attackers to execute arbitrary PHP code and gain root privileges on shared hosting servers. The post Joomla, LiteSpeed Vulnerabilities Exploited in Attacks appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
Athena coalition, Estonia’s quarantine, Arch hit with malware
Athena coalition looks to secure open source Estonia to quarantine Russian email domains Malicious package wave hits Arch Linux Get the show notes here: https://cisoseries.com/cybersecurity-news-athena-coalition-estonias-quarantine-arch-hit-with-malware/ Huge thanks to our sponsor, ThreatLocker Every security leader is being asked the same question…
China AI Tops US In Survey, But Fails On Trust
Survey finds people in many countries believe China leads AI race, including UK, France, but trust in Chinese models is far lower This article has been indexed from Silicon UK Read the original article: China AI Tops US In Survey,…
Hackers Inject Malicious JavaScript Into WordPress Sites to Deploy ErrTraffic ClickFix Lures
Hackers are injecting malicious JavaScript into compromised WordPress sites to deploy ErrTraffic-powered ClickFix lures, a campaign that achieved nearly 60% victim conversion rates an unprecedented figure in malware ecosystems. Threat actors exploit WordPress vulnerabilities to inject a single line of…
Using Real-Time Network Monitoring to Spot Suspicious Application Behavior on macOS
In this guide, we will see how real-time network monitoring helps you spot suspicious application behavior on macOS, why traditional defenses leave a visibility gap, and how a lightweight monitoring tool can close it without turning your Mac into a…
Hackers Using Claude and OpenAI’s Codex for Exploitation, and Data Exfiltration Activities
Hackers are increasingly abusing Anthropic’s Claude and OpenAI’s Codex agents to automate reconnaissance, exploitation, and data exfiltration, often by disguising real intrusions as “authorized red team” work. These AI coding assistants are being treated like full-fledged operators, dramatically lowering the…
3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs
SOCRadar has detected 30,000 compromised Fortinet firewalls that expose networks to hacking. The post 3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: 3 Recently…