Ransomware gang ‘CrazyHunter’ Targets Critical Taiwanese Orgs

/in

Trend Micro researchers detailed an emerging ransomware campaign by a new group known as “CrazyHunter” that is targeting critical sectors in Taiwan.

darkreading – ​Read More

CISA warns of potential data breaches caused by legacy Oracle Cloud leak

/in

The Cybersecurity and Infrastructure Security Agency on Wednesday said that while the scope of the reported Oracle issue remains unconfirmed, it “presents potential risk to organizations and individuals.”

The Record from Recorded Future News – ​Read More

Why the CVE database for tracking security flaws nearly went dark – and what happens next

/in

Expired US government funding nearly disrupted this global security system. How can we prevent this from happening again in 11 months?

Latest stories for ZDNET in Security – ​Read More

Developers Beware: Slopsquatting & Vibe Coding Can Increase Risk of AI-Powered Attacks

/in

Slopsquatting and vibe coding are fueling a new wave of AI-driven cyberattacks, exposing developers to hidden risks through fake, hallucinated packages.

Security | TechRepublic – ​Read More

OpenAI launches o3 and o4-mini, AI models that ‘think with images’ and use tools autonomously

/in

Credit: VentureBeat made with Midjourney

OpenAI launches groundbreaking o3 and o4-mini AI models that can manipulate and reason with images, representing a major advance in visual problem-solving and tool-using artificial intelligence.Read More

Security News | VentureBeat – ​Read More

Apple says zero-day bugs exploited against ‘specific targeted individuals’ using iOS

/in

One of the bugs was discovered by Google’s security researchers who investigate government-backed cyberattacks.

Security News | TechCrunch – ​Read More

CVE Program Stays Online as CISA Backs Temporary MITRE Extension

/in

MITRE avoids CVE program shutdown with last-minute contract extension. Questions remain about long-term funding and the future of…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

More than 100,000 had information stolen from Hertz through Cleo file share tool

/in

Car rental giant Hertz has been notifying state regulators of a data breach that occurred through third-party file sharing software. Tens of thousands of people are affected, but the company hasn’t specified a total number.

The Record from Recorded Future News – ​Read More

Patch Now: NVDIA Flaws Expose AI Models, Critical Infrastructure

/in

A fix for a critical flaw in a tool allowing organizations to run GPU-accelerated containers released last year did not fully mitigate the issue, spurring the need to patch a secondary flaw to protect organizations that rely on NVIDIA processors for AI workloads.

darkreading – ​Read More

MITRE CVE Program Gets Last-Hour Funding Reprieve

/in

The US government’s cybersecurity agency CISA has “executed the option period on the contract” to keep the vulnerability catalog operational.

The post MITRE CVE Program Gets Last-Hour Funding Reprieve appeared first on SecurityWeek.

SecurityWeek – ​Read More