Tag: incident response
-
The Register: Critical, make-me-super-user SAP S/4HANA bug under active exploitation
Source URL: https://www.theregister.com/2025/09/05/critical_sap_s4hana_bug_exploited/ Source: The Register Title: Critical, make-me-super-user SAP S/4HANA bug under active exploitation Feedly Summary: 9.9-rated flaw on the loose, so patch now A critical code-injection bug in SAP S/4HANA that allows low-privileged attackers to take over your SAP system is being actively exploited, according to security researchers.… AI Summary and Description: Yes…
-
The Register: Windows starts asking for admin rights where it shouldn’t after security fix
Source URL: https://www.theregister.com/2025/09/04/windows_admin_rights_bug/ Source: The Register Title: Windows starts asking for admin rights where it shouldn’t after security fix Feedly Summary: Patch closes vuln but leaves standard users locked out of common apps Microsoft’s August 2025 Windows Security Update is causing pain for administrators after a fix for a vulnerability led to some unintended consequences.……
-
The Register: It looks like you’re ransoming data. Would you like some help?
Source URL: https://www.theregister.com/2025/09/03/ransomware_ai_abuse/ Source: The Register Title: It looks like you’re ransoming data. Would you like some help? Feedly Summary: AI-powered ransomware, extortion chatbots, vibe hacking … just wait until agents replace affiliates It’s no secret that AI tools make it easier for cybercriminals to steal sensitive data and then extort victim organizations. But two…
-
Unit 42: Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances
Source URL: https://unit42.paloaltonetworks.com/threat-brief-compromised-salesforce-instances/ Source: Unit 42 Title: Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances Feedly Summary: This Threat Brief discusses observations on a campaign leveraging Salesloft Drift integration to exfiltrate data via compromised OAuth credentials. The post Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances appeared first on Unit 42.…
-
NCSC Feed: From bugs to bypasses: adapting vulnerability disclosure for AI safeguards
Source URL: https://www.ncsc.gov.uk/blog-post/from-bugs-to-bypasses-adapting-vulnerability-disclosure-for-ai-safeguards Source: NCSC Feed Title: From bugs to bypasses: adapting vulnerability disclosure for AI safeguards Feedly Summary: Exploring how far cyber security approaches can help mitigate risks in generative AI systems AI Summary and Description: Yes Summary: The text addresses the intersection of cybersecurity strategies and generative AI systems, highlighting how established cybersecurity…
-
The Register: Enterprise password management outfit Passwordstate patches Emergency Access bug
Source URL: https://www.theregister.com/2025/08/29/enterprise_password_management_outfit_passwordstate/ Source: The Register Title: Enterprise password management outfit Passwordstate patches Emergency Access bug Feedly Summary: Up to 29,000 organizations and potentially 370,000 security and IT pros affected Australian development house Click Studios has warned users of its Passwordstate enterprise password management platform to update immediately if not sooner, following the discovery of…
-
The Register: The intruder is in the house: Storm-0501 attacked Azure, stole data, demanded payment via Teams
Source URL: https://www.theregister.com/2025/08/27/storm0501_ransomware_azure_teams/ Source: The Register Title: The intruder is in the house: Storm-0501 attacked Azure, stole data, demanded payment via Teams Feedly Summary: Don’t let it happen to you Storm-0501, a financially motivated cybercrime crew, recently broke into a large enterprise’s on-premises and cloud environments, ultimately exfiltrating and destroying data within the org’s Azure…