Salesforce Disables Klue Integration After OAuth Token Theft Hits Customer Data

/in

Icarus extortion group used a legacy Klue Battlecards credential to bypass security and steal bulk Salesforce records from affected companies.

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack

/in

A malicious dependency the attackers added to over 140 Mastra packages fetches a payload targeting cryptocurrency extensions.

The post North Korean Hackers Blamed for Mastra NPM Supply Chain Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Yes, you need a password manager – and you can try Proton Pass for just $1 right now

/in

Proton Pass is one of our favorite password managers – and you can try a month for 80% off with this deal.

Latest news – ​Read More

Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data

/in

Vulnerable WordPress plugin iterations leak API keys, secrets, tokens, server information, and other data.

The post Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data appeared first on SecurityWeek.

SecurityWeek – ​Read More

Fortinet Responds to FortiBleed Campaign

/in

A database of over 86,000 confirmed working credentials was created during the credential-harvesting campaign.

The post Fortinet Responds to FortiBleed Campaign appeared first on SecurityWeek.

SecurityWeek – ​Read More

June Prime Day live blog 2026: We’re tracking Amazon deals on SSDs, TVs, laptops and more

/in

LIVE: Prime Day 2026 early deals are here. Follow our live blog for real-time tracking on the lowest prices for 4K TVs, M5 MacBooks, Samsung, Google Pixel, SSDs, and more tech.

Latest news – ​Read More

New Exploit Bypasses Apple’s Boot Defenses, Affects Millions of iPhones

/in

The vulnerability exploited by the Usbliter8 exploit cannot be patched and a PoC exploit has been released by researchers.

The post New Exploit Bypasses Apple’s Boot Defenses, Affects Millions of iPhones appeared first on SecurityWeek.

SecurityWeek – ​Read More

INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific

/in

A new report from INTERPOL has revealed a “dramatic increase” in cybercrime in Asia and the South Pacific, fueled by rapid digitalization, internet penetration, new technologies, organized criminal networks, and a disparity in cybersecurity maturity.

According to INTERPOL’s 2025/2026 Asia and South Pacific Cyberthreat Assessment Report, phishing has emerged as the most widespread and

The Hacker News – ​Read More

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network

/in

A new malware family is turning forgotten home routers into a distributed reconnaissance and proxy network, not the DDoS botnet these devices usually end up in. QiAnXin’s XLab calls it AryStinger and counts at least 4,300 infected routers, a total it says is still rising.

The distinction matters. AryStinger exists for the stage of an attack that comes before the break-in. Infected

The Hacker News – ​Read More

Texas Parks & Wildlife Data Breach Affects 3 Million Individuals

/in

Hackers stole personal information after breaching the systems of a third-party license vendor serving TPWD.

The post Texas Parks & Wildlife Data Breach Affects 3 Million Individuals appeared first on SecurityWeek.

SecurityWeek – ​Read More