Tag: Risk

Source URL: https://www.wired.com/story/app-used-to-dox-charlie-kirk-critics-doxed-its-own-users-instead/ Source: Wired Title: An App Used to Dox Charlie Kirk Critics Doxed Its Own Users Instead Feedly Summary: Plus: A ransomeware gang steals data on 8,000 preschoolers, Microsoft blocks Israel’s military from using its cloud for surveillance, call-recording app Neon hits pause over security holes, and more. AI Summary and Description: Yes…

The Register: Hunt for RedNovember: Beijing hacked critical orgs in year-long snooping campaign

Sep 27, 2025

—

by

Source URL: https://www.theregister.com/2025/09/27/rednovember_chinese_espionage/ Source: The Register Title: Hunt for RedNovember: Beijing hacked critical orgs in year-long snooping campaign Feedly Summary: Not to be confused with all the other reports of Chinese intruders on US networks that came to light this week RedNovember, a Chinese state-sponsored cyberspy group, targeted government and critical private-sector networks around the…

Simon Willison’s Weblog: ForcedLeak: AI Agent risks exposed in Salesforce AgentForce

—

by

Source URL: https://simonwillison.net/2025/Sep/26/agentforce/#atom-everything Source: Simon Willison’s Weblog Title: ForcedLeak: AI Agent risks exposed in Salesforce AgentForce Feedly Summary: ForcedLeak: AI Agent risks exposed in Salesforce AgentForce Classic lethal trifecta image exfiltration bug reported against Salesforce AgentForce by Sasi Levi and Noma Security. Here the malicious instructions come in via the Salesforce Web-to-Lead feature. When a…

Unit 42: Threat Insights: Active Exploitation of Cisco ASA Zero Days

—

by

Source URL: https://unit42.paloaltonetworks.com/zero-day-vulnerabilities-affect-cisco-software/ Source: Unit 42 Title: Threat Insights: Active Exploitation of Cisco ASA Zero Days Feedly Summary: CVE-2025-20333, CVE-2025-20362 and CVE-2025-20363 affect multiple Cisco products, and are being exploited by a threat actor linked to the ArcaneDoor campaign. The post Threat Insights: Active Exploitation of Cisco ASA Zero Days appeared first on Unit 42.…

Simon Willison’s Weblog: How to stop AI’s “lethal trifecta”

—

by

Source URL: https://simonwillison.net/2025/Sep/26/how-to-stop-ais-lethal-trifecta/ Source: Simon Willison’s Weblog Title: How to stop AI’s “lethal trifecta” Feedly Summary: How to stop AI’s “lethal trifecta” This is the second mention of the lethal trifecta in the Economist in just the last week! Their earlier coverage was Why AI systems may never be secure on September 22nd – I…

The Register: Microsoft spots fresh XCSSET malware strain hiding in Apple dev projects

—

by

Source URL: https://www.theregister.com/2025/09/26/microsoft_xcsset_macos/ Source: The Register Title: Microsoft spots fresh XCSSET malware strain hiding in Apple dev projects Feedly Summary: Upgraded nasty slips into Xcode builds, steals crypto, and disables macOS defenses The long-running XCSSET malware strain has evolved again, with Microsoft warning of a new macOS variant that expands its bag of tricks while…

The Register: Salesforce facing multiple lawsuits after Salesloft breach

—

by

Source URL: https://www.theregister.com/2025/09/26/salesforce_class_actions/ Source: The Register Title: Salesforce facing multiple lawsuits after Salesloft breach Feedly Summary: CRM giant denies security shortcomings as claims allege stolen data used for ID theft Salesforce is facing a wave of lawsuits in the wake of a cyberattack that exposed customer data.… AI Summary and Description: Yes Summary: Salesforce is…

The Cloudflare Blog: Introducing new regional Internet traffic and Certificate Transparency insights on Cloudflare Radar

—

by

Source URL: https://blog.cloudflare.com/new-regional-internet-traffic-and-certificate-transparency-insights-on-radar/ Source: The Cloudflare Blog Title: Introducing new regional Internet traffic and Certificate Transparency insights on Cloudflare Radar Feedly Summary: Cloudflare Radar now offers a Certificate Transparency dashboard for monitoring TLS certificate activity, and new regional traffic insights for a sub-national perspective on Internet trends. AI Summary and Description: Yes **Summary:** The text…

Slashdot: Meta Launches Vibes, an Endless Feed of AI Slop for Your Viewing Displeasure

—

by