ShinyHunters claims yet another Salesforce customers breach
…Salesforce has been a longtime target of the extortion crew , which has stolen data from hundreds of the CRM giant's customers in a series of attacks over the past year. ShinyHunters…
Search
Ransomware scum, other crims exploit 4 old Microsoft bugs
…The latter had been exploited as a zero-day for months , and Adobe finally released a patch over the weekend. ® security patches patch management microsoft cybersecurity and infrastructure security agency cybercrime
McGraw Hill linked to 13.5M-record data leak
…Extended security updates for old Exchange, and Skype for Biz Commvault has a Ctrl+Z for rogue AI agents Anthropic's Project Glasswing CVE tally is still anyone's guess Raspberry Pi…
NHS pays £46K to prep next Microsoft licensing round
…NHS England already has a national Microsoft licensing deal covering email, Teams, and related security tools for roughly 1.5 million staff. That agreement was signed in 2023 and is delivered via…
Microsoft pushes out-of-band hotpatch for Bluetooth
OSes Out-of-band getting out of hand as Microsoft pushes hotpatch for Bluetooth Second emergency fix in days targets Windows 11 24H2 and 25H2 Microsoft has pushed out yet another out…
Russians posing as Signal support to launch phishing raids
…accounts and conduct phishing attacks, the FBI and Cybersecurity and Infrastructure Security Agency (CISA) warned last Friday. The attacks target people with high intelligence value, like former government officials, military figures, politicians…
Don't open that WhatsApp message, Microsoft warns
…While Microsoft's blog includes several recommendations directing people to use their security products to avoid this type of compromise, one vendor-neutral tip that we especially like involves educating users on…
OpenAI CEO Sam Altman home attack suspect charged
…Video evidence taken from security cameras installed at Altman's residence showed a man approaching the tall gates at the bottom of Altman's driveway at around 03:37, launching an incendiary…
Google rushes Chrome update to fix zero-days under attack
…V8 vulnerabilities are particularly valuable to attackers because they can potentially be triggered by getting a target to visit a malicious or compromised site. Google says it is aware that exploits for…
Okta made a nightmare micromanager for your AI agents
…Over the last 17 years, McKinnon said, Okta’s bet on identity access has paid off, whether it was in securing users in the cloud, during the wave of mobile adoption at…