Bitcoin Depot loses $3.6 million in Bitcoin after system breach
The breach allowed unauthorized access to Bitcoin Depot's corporate IT systems, leading to the theft of 50.903 Bitcoin, valued at roughly $3.
SC Media
20 articles
AWS launches Agent Registry to enhance visibility and control of AI agents
AWS' Agent Registry functions as a central repository for metadata describing AI agents, tools, and associated resources.
FleetWave suffers major outage after cybersecurity incident
Chevin Fleet Solutions confirmed that FleetWave environments hosted in Azure in both the UK and US were taken offline as a precautionary measure.
The case for funding a strong, effective CISA
The U.S.
Linux Foundation leader impersonated in Slack phishing campaign
The campaign targets open-source developers to steal credentials and deploy malware.
Capability-centric governance redefines access control for legacy systems
Govern business actions — not entitlements — to reduce risk and improve access control on z/OS and IBM i.
The case for funding a strong, engaged CISA
The U.S.
Back to the beginning: A new model for secure SaaS access
Binding access to devices offers a practical way to secure modern cloud environments.
Internet-exposed Modbus ICS devices threaten critical infrastructure
Internet-facing industrial control devices connected to the default Modbus port, commonly used by power grids and other industrial systems, reached 179 acros...
Misconfiguration spills over 40M SMTP records linked to major firms
Cybernews reports that more than 40 million SMTP records, including email addresses and traffic metadata from leading corporations DHL, L'Oreal, Renault, and...
Over 300K Americans compromised in Eurail breach
Eurail B.V.
Major Colombian banks purportedly breached, data leaked
Grupo Bancolombia and Banco De Bogota, two of the leading banks in Colombia, were claimed to have been compromised by the same threat actor, who also exposed...
AI Makes All Bug Shallow? - PSW #921
Contagious Interview campaign expands further
Over a dozen new malicious packages have been published across the npm, PyPI, Go Modules, crates.io, and Packagist ecosystems to facilitate malware compromis...
Iranian cyberattacks to continue amid ceasefire
Iranian hacking group Handala has declared continuous cyberattacks against Israel and an imminent resumption of cyber operations against the U.S.
Cybercriminals use emojis to evade detection, Flashpoint warns
Flashpoint's report categorizes the emojis used by cybercriminals into several groups, including financial activity, access credentials, tools, automation, s...
APT28 deploys PRISMEX malware in espionage campaign against Ukraine and allies
The campaign, uncovered by Trend Micro and attributed to APT28 (also known as Fancy Bear and Pawn Storm), exploits newly disclosed vulnerabilities, including...
Hack-for-hire group targets MENA journalists and officials
Security researchers from Access Now and Lookout have detailed a sophisticated espionage campaign that began in 2023 and continued through 2025.
13-year-old Apache ActiveMQ RCE vulnerability discovered, AI assisted in finding exploit
The vulnerability, with a severity score of 8.8, affects multiple versions of Apache ActiveMQ/Broker.
New WebRTC skimmer exploits PolyShell vulnerability
The skimmer operates by establishing a WebRTC peer connection to a hard-coded IP address over UDP port 3479 to retrieve JavaScript code.