Dashlane accounts suspended amid brute-force attack
Dashlane users reported receiving notifications of suspicious login attempts from unknown devices and foreign locations, leading to account lockouts.
SC Media
20 articles
Dragos acquires Phosphorus to enhance industrial cybersecurity
The acquisition aims to integrate Phosphorus' platform, which identifies connected devices, assesses exposures, and automates remediation, into Dragos' offer...
Microsoft resolves Windows 11 update installation errors
The installation failures, often accompanied by messages like "Something didn't go as planned. Undoing changes," and log entries indicating "SpaceCheck" and ...
Meta AI customer support tricked into forwarding password reset codes
Cybercriminals engaged with Meta's AI chatbot, convincing it to initiate a password reset sequence for a user's account without proper identity verification.
Grand Theft Auto V cheat service Atlas Menu hacked, user data exposed
The breach, reported by Have I Been Pwned, exposed nearly 64,000 accounts, including email addresses, usernames, scrambled passwords, IP addresses, and suppo...
Critical vulnerability in WP Maps Pro allows rogue administrator account creation
The vulnerability stems from a temporary access feature intended for vendor support.
New CIFSwitch vulnerability allows Linux privilege escalation
The CIFSwitch vulnerability, which was discovered by SpaceX Security Engineer Asim Viladi Oglu Manizada, impacts multiple Linux distributions that use vulner...
Crypto whales and executives face rising physical attacks
The public ledger that underpins cryptocurrency, while enabling transparency, also exposes wealthy holders, known as whales, to identification and targeting ...
MokN raises $15 million to combat identity-based cyber threats
MokN's approach utilizes ultra-realistic decoy access points, a technique they call "phish-back," designed to trap threat actors and allow organizations to n...
Digital Intelligence Lab launches observatory to connect cyber events with geopolitical context
The DIL Observatory maps cyber incidents, including ransomware attacks, data breaches, and cyber militia activity, alongside their geopolitical and social co...
PAN-OS authentication bypass bug added to list of exploited vulnerabilities
While NIST upgraded the bug to 9.1, experts say teams must focus more on how attackers can exploit this flaw to gain VPN access.
AI security’s cost bottleneck isn’t tokens – it’s validation
Experts say attempting to replace deterministic tools and human analysts with AI could cost companies more.
Russian hacker used AI to run fraud scheme on MAGA Telegram channel
The threat actor created the public Telegram channel, @americanpatriotus, shortly after the Capitol riot in 2021.
Attackers use ChatGPT feature to spread malware
The campaign discovered by Push Security, dubbed "LLMShare," utilizes Google ads to direct users searching for ChatGPT to a malicious shared page hosted on t...
Dutch authorities disrupt massive botnet of 17 million devices
The operation, a collaboration between Dutch police and the National Cyber Security Centre (NCSC), targeted servers hosted by a local provider.
California sues 23andMe over 2023 data breach
The lawsuit stems from a credential-stuffing attack in October 2023, where threat actors exploited weak user credentials to access accounts.
The 2026 FIFA World Cup: A network availability stress test
Here’s four tips for organizations protecting the World Cup ecosystem from a major DDoS attack.
How to defend at machine speed: A post-LLM era playbook
AI-era attacks now move at machine speed, forcing defenders to rethink validation and response.
Helping defense's use of AI catch up with offense, cost of the vulnpocalypse, news - Evan Powell - ESW #461
AI helps Russian-speaking GreyVibe run five parallel attack chains on Ukrainian targets
Researchers say Russian-speaking group GreyVibe uses AI tools to scale cyberattacks on Ukraine.