Tag: breach

—

by

Source URL: https://yro.slashdot.org/story/25/09/26/1836203/chinese-hackers-breach-us-software-and-law-firms-amid-trade-fight?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Chinese Hackers Breach US Software and Law Firms Amid Trade Fight Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a sophisticated hacking campaign by suspected Chinese hackers targeting US software developers and law firms, as reported by cybersecurity firm Mandiant. The implications for cloud computing security…

The Register: Salesforce facing multiple lawsuits after Salesloft breach

—

by

Source URL: https://www.theregister.com/2025/09/26/salesforce_class_actions/ Source: The Register Title: Salesforce facing multiple lawsuits after Salesloft breach Feedly Summary: CRM giant denies security shortcomings as claims allege stolen data used for ID theft Salesforce is facing a wave of lawsuits in the wake of a cyberattack that exposed customer data.… AI Summary and Description: Yes Summary: Salesforce is…

The Register: LockBit’s new variant is ‘most dangerous yet,’ hitting Windows, Linux and VMware ESXi

—

by

Source URL: https://www.theregister.com/2025/09/26/lockbits_new_variant_is_most/ Source: The Register Title: LockBit’s new variant is ‘most dangerous yet,’ hitting Windows, Linux and VMware ESXi Feedly Summary: Operation Cronos didn’t kill LockBit – it just came back meaner Trend Micro has sounded the alarm over the new LockBit 5.0 ransomware strain, which it warns is “significantly more dangerous" than past…

The Register: ‘An attacker’s playground:’ Crims exploit GoAnywhere perfect-10 bug

—

by

Source URL: https://www.theregister.com/2025/09/26/an_apts_playground_goanywhere_perfect10/ Source: The Register Title: ‘An attacker’s playground:’ Crims exploit GoAnywhere perfect-10 bug Feedly Summary: Researchers say tens of thousands of instances remain publicly reachable Security researchers have confirmed that threat actors have exploited the maximum-severity vulnerability affecting Fortra’s GoAnywhere managed file transfer (MFT), and chastised the vendor for a lack of transparency.……

The Register: Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales

—

by

Source URL: https://www.theregister.com/2025/09/26/salesforce_agentforce_forceleak_attack/ Source: The Register Title: Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales Feedly Summary: More fun with AI agents and their security holes A now-fixed flaw in Salesforce’s Agentforce could have allowed external attackers to steal sensitive customer data via prompt injection, according to security researchers…

Slashdot: Neon Goes Dark After Exposing Users’ Phone Numbers, Call Recordings, Transcripts

Sep 25, 2025

—

by

Source URL: https://yro.slashdot.org/story/25/09/25/221215/neon-goes-dark-after-exposing-users-phone-numbers-call-recordings-transcripts?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Neon Goes Dark After Exposing Users’ Phone Numbers, Call Recordings, Transcripts Feedly Summary: AI Summary and Description: Yes Summary: The emergence of the Neon app, which enabled users to monetize their phone call recordings while simultaneously offering data to AI companies, has raised significant security concerns following a critical…

The Cloudflare Blog: Safe in the sandbox: security hardening for Cloudflare Workers

Sep 25, 2025

—

by

Source URL: https://blog.cloudflare.com/safe-in-the-sandbox-security-hardening-for-cloudflare-workers/ Source: The Cloudflare Blog Title: Safe in the sandbox: security hardening for Cloudflare Workers Feedly Summary: We are further hardening Cloudflare Workers with the latest software and hardware features. We use defense-in-depth, including V8 sandboxes and the CPU’s memory protection keys to keep your data safe. AI Summary and Description: Yes Summary:…

The Register: Zero-day deja vu as another Cisco IOS bug comes under attack

Sep 25, 2025

—

by

Source URL: https://www.theregister.com/2025/09/25/zeroday_deja_vu_another_cisco/ Source: The Register Title: Zero-day deja vu as another Cisco IOS bug comes under attack Feedly Summary: The latest in a run of serious networking bugs gives attackers root if they have SNMP access Cisco has confirmed a new IOS and IOS XE zero-day, the latest in a string of flaws that…

Microsoft Security Blog: Retail at risk: How one alert uncovered a persistent cyberthreat

Sep 24, 2025

—

by