WeLiveSecurity

Webworm: New burrowing techniques

ESET researchers analyzed the 2025 activity of Webworm, a China-aligned APT group that started out targeting organizations in Asia, but has recently shifted its focus to Europe. Even though this is ...

Manifold scores 7,700 MCP servers in Manifest expansion aimed at agent security teams

Artificial intelligence detection and response platform startup Manifold Security Inc. today announced an expansion of its ...

TuxCare Delivers Post-EOL Security Support for Nuxt 3 Environments

Extends security support beyond Nuxt 3 end-of-life, helping organizations protect production Vue.js applications and ...
Security Boulevard

Aembit Now Supports Oracle Database Protocol – No More Static Passwords in Your Enterprise Stack

Oracle powers some of the most critical workloads in the enterprise. It’s also one of the places where static, long-lived database passwords still hide in plain sight – hardcoded in config files, ...
The Hacker News

Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak

Critical out-of-bounds read in Ollama before 0.17.1 leaks process memory including API keys from over 300000 servers via ...

Running Claude Code or Claude in Chrome? Here's the audit matrix for every blind spot your security stack misses

Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix ...
Security Boulevard

Ransomware, Critical Vulnerabilities, and the Security Gap No One Is Closing Fast Enough

Somewhere between a five-month investigation gap at a Minnesota hospital and 17 million vehicle records sitting on a contractor’s FTP server, a familiar story started taking shape again. Attackers ...
Dark Reading

LatAm Vibe Hackers Generate Custom Hacking Tools on the Fly

In the latest evolution of automated cyberattacks, 2 threat campaigns heavily leveraged AI agents to support attacks against ...

Leaked Shai-Hulud malware fuels new npm infostealer campaign

The Shai-Hulud malware leaked last week is now used in new attacks on the Node Package Manager (npm) index, as infected ...
CSO Online

Expired domain leads to supply chain attack on node-ipc npm package

Attackers performed an email takeover attack on a dormant maintainer account and published new node-ipc versions containing ...
CPO Magazine

AI Unearths Critical Vulnerability Hidden in NGINX Web Servers for 18 Years

A critical vulnerability discovered by AI spans most of the history of NGINX, which was first made available in 2004. The web ...
The Hacker News

TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

TCLBANKER targets 59 financial platforms using WhatsApp worms and Outlook phishing, increasing banking credential theft risks ...