Infosecurity News

  1. Researchers Trick AI Browsers Into Leaking Credentials

    LayerX tricked AI browsers including ChatGPT Atlas and Comet into bypassing their guardrails

  2. Europol-Led Operation Endgame Takes Down StealC and Amadey Infostealers

    Operation Endgame seized around 50 domains and nearly 200 active IP-based servers associated with the infostealers

  3. macOS Backdoor Uses Prompt Injection to Evade AI Triage

    SentinelLabs found a North Korea-linked macOS backdoor using prompt injection on AI triage tools

  4. KDDI Breach Affects Six Japanese ISPs, Exposes 14.2 Email Credentials

    Customers of the affected Japanese email services are “strongly advised” to change their email passwords

  5. Iran-Linked MuddyWater Poses as Ransomware Gang to Mask Cyber Espionage

    An NCC Group report warns state-backed hackers are attempting to hide activity by posing as ransomware groups and deploying commercially available malware

  6. AI Is Making Attacks Cheaper, Faster and More Covert, Says ReliaQuest

    New ReliaQuest study reveals the six ways AI is practically being used in attacks today

  7. UK Museums Face Cybersecurity Risks, MPs Warn

    Public Accounts Committee (PAC) warns that museums and galleries aren’t getting enough government support on cyber

  8. Lookalike npm Package Hides a Multi-Stage Windows RAT

    JFrog found an npm package impersonating postcss-selector-parser to drop a multi-stage Windows RAT

  9. OpenAI Expands Daybreak to Help Defenders Patch Flaws

    OpenAI expanded Daybreak with a full GPT-5.5-Cyber release to help defenders patch software flaws

  10. Trump Issues Executive Order to Fast-Track Post-Quantum Migration

    All US federal agencies will have to complete their post-quantum cryptography transition by 2031, according to a new Trump Executive Order

  11. GTA 6 Scams Emerge as Pre-Orders Open

    Cybercriminals launch fake GTA 6 pre-order sites offering early access for crypto payments

  12. Scattered Spider Teens Convicted of TfL Cyber-Attack

    Two young British men have pleaded guilty to hacking Transport for London as part of a Scattered Spider plot

  13. Five Eyes Group Issues Urgent Call to Tackle Frontier AI Threats

    The Five Eyes Alliance has published a rare call to action for organizations facing AI threats

  14. GentleKiller Framework Disables Victims' Security Software

    ESET details GentleKiller, the EDR-killer framework the Gentlemen ransomware gang gives affiliates

  15. Unpatchable BootROM Flaw Impacts Apple A12, A13 Chips

    Apple BootROM exploit exposes unpatchable USB flaw on A12 and A13 devices

  16. Microsoft Attributes Mastra AI Supply Chain Attack to North Korea

    North Korean threat actor Sapphire Sleet has been linked to a supply chain attack targeting Mastra, according to Microsoft security researchers

  17. Klue Breach Enables Hackers to Compromise Cybersecurity Firms via OAuth Tokens

    At least four cybersecurity firms confirmed they have been affected by a breach of business intelligence platform Klue via Salesforce integration

  18. UK Information Commissioner Resigns After Workplace Investigation

    The UK’s data protection regulator the information commissioner has resigned after his position became “untenable”

  19. NCSC Urges Fortinet Customers to Tackle FortiBleed Fallout

    The NCSC has released guidance for Fortinet customers impacted by the FortiBleed threat campaign

  20. AWS Unveils 'Continuum,' an AI-Powered Vulnerability Management Platform

    Working with frontier AI models, this new platform aims to help discovering, prioritizing, validating and remediating code vulnerabilities

Why Not Watch?

  1. 68% of Businesses Say Employees Are Their Biggest Cyber Threat. Now What?

  2. Building True Cyber Resilience Across Financial Supply Chains

  3. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  4. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

What’s Hot on Infosecurity Magazine?