Toshiba and Muji warn of fake login screens from polyfill.io
Tech giants Toshiba and Muji have alerted visitors to their websites about suspicious sign-in screens that could potentially harvest user credentials.
SC Media
20 articles
The State of AI in SecOps, the Unintended Consequences of Vulnmaxxing, and the News - Filip Stojkovski - ESW #462
Senator introduces bill to restore cybersecurity funding for state and local governments
The proposed "Guaranteeing Universal Access to Cybersecurity Act" seeks to authorize $50 million annually for the MS-ISAC, which is operated by the Center fo...
Pro-Russian hacker group launches 'Patriotic Online Games' campaign targeting European organizations
The group is leveraging Telegram to enlist "patriotic volunteers," offering cryptocurrency rewards for participating in various cyber activities, including D...
Hackers actively exploit SolarWinds Serv-U flaw to crash servers, CISA warns
The vulnerability, tracked as CVE-2026-28318, is a denial-of-service flaw in SolarWinds Serv-U file transfer software.
New China-linked threat cluster OP-512 targets Microsoft IIS servers
OP-512 deploys a custom web shell framework consisting of three distinct web shells, designed to provide attackers with remote access while evading detection.
California man sentenced to over 26 years for dark web drug trafficking
Darren Hughes, 39, of San Jose, was convicted in November 2025 on drug trafficking charges.
Anthropic deploys engineers to NSA to aid Mythos use
The deployment of Anthropic engineers to the NSA is intended to help the agency integrate and utilize the Mythos AI model for specific applications.
Local AI, Salesforce, Fluttershell, Aspose, http/2, Cisco, Used Tech, Josh Marpet - SWN #587
IronWorm malware, similar to Shai-Hulud, hits 57 projects across 9 organizations
The malware targets developer credentials and cryptocurrency and self-propagates on npm.
Another Cisco Catalyst SD-WAN Manager bug actively exploited
Cisco warns of an exploited SD-WAN flaw that can enable remote code execution and network compromise.
Why AI Agents Need an Identity Model, Not Just an API Key
Magecart campaign exploits Stripe API for credit card theft
The sophisticated attack utilizes Google Tag Manager (GTM) and Stripe domains, which are implicitly trusted by e-commerce sites, allowing the malicious code ...
Why writing software has become dangerous today
There’s just more code than ever and developers can’t verify everything – we need to make all that code understandable.
Commvault offers recommendations for resilience in the age of frontier AI
Frontier AI models, while powerful for identifying vulnerabilities, also present new risks from bad actors, accelerating exploitation timelines to mere minutes.
Hola browser supply chain attack delivers cryptocurrency miner
Cybersecurity researchers at Sophos and other companies discovered an undeclared executable, identified as a Monero cryptocurrency miner, being installed wit...
Malicious podcast, PDF apps spread FlutterShell macOS backdoor malware
FlutterShell is linked to previous malvertising campaigns including TamperedChef.
China-linked actors using job sites to target government workers, Five Eyes warns
The intelligence agencies, comprising the UK, US, Canada, Australia, and New Zealand, detailed a sophisticated espionage campaign.
Android Gemini prompt injection flaw patched by Google
SafeBreach researchers discovered that prompt injection attacks could be executed on Android phones if a user instructed Gemini to read their pending notific...
iFood confirms data breach affecting 1.2 million users
The breach resulted in the exposure of names, phone numbers, addresses, and CPF numbers, which are crucial Brazilian taxpayer identification documents used f...