Google Detects First AI-Generated Zero-Day Exploit
The zero-day was designed to bypass 2FA and it was developed by a prominent cybercrime group.
The post Google Detects First AI-Generated Zero-Day Exploit appeared first on SecurityWeek.
The zero-day was designed to bypass 2FA and it was developed by a prominent cybercrime group.
The post Google Detects First AI-Generated Zero-Day Exploit appeared first on SecurityWeek.
The incident occurred on April 20 and did not affect customer data in the companyβs production and staging environments.
The post SailPoint Discloses GitHub Repository Hack appeared first on SecurityWeek.
Also called Copy Fail 2 and tracked as CVE-2026-43284 and CVE-2026-43500, the exploit was disclosed before a patch was released.
The post New βDirty Fragβ Linux Vulnerability Possibly Exploited in Attacks appeared first on SecurityWeek.
It targeted high-precision calculation software to tamper with results and packed a self-propagation mechanism.
The post Pre-Stuxnet Sabotage Malware βFast16β Linked to US-Iran Cyber Tensions appeared first on SecurityWeek.
Locked Shields has grown significantly over the past 16 years, with only four nations participating in the first edition.
The post Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in Worldβs Biggest Exercise appeared first on SecurityWeek.
The malware provides remote access and control of infected devices and maintains post-patching persistence.
The post US Federal Agencyβs Cisco Firewall Infected With βFirestarterβ Backdoor appeared first on SecurityWeek.
Tied to a fresh Checkmarx supply chain attack claimed by TeamPCP, the incident references the Shai-Hulud worm.
The post Bitwarden NPM Package Hit in Supply Chain Attack appeared first on SecurityWeek.
The flaw allows attackers to access the SAM database, extract NTLM hashes, and gain System privileges.
The post Recent Microsoft Defender Vulnerability Exploited as Zero-Day appeared first on SecurityWeek.
The state-sponsored hackers deployed custom tools and stayed dormant in the compromised environments for months.
The post China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation appeared first on SecurityWeek.
Initial evidence indicates Iran may be behind the attack, but officials admitted it could be a false flag.Β
The post Hacking Attempt Reported at Polandβs Nuclear Research Center appeared first on SecurityWeek.
Personal information such as names, email addresses, and phone numbers was accessed by hackers.
The post Loblaw Data Breach Impacts Customer Information appeared first on SecurityWeek.
Starbucks said the incident involved phishing attacks targeting an employee portal, affecting hundreds.
The post Starbucks Data Breach Impacts Employees appeared first on SecurityWeek.
Stryker was targeted by the Handala group, which claims to have wiped more than 200,000 of the companyβs devices.
The post MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack appeared first on SecurityWeek.
The cybercriminals have leaked more than 300GB of files allegedly stolen from the tire giant.
The post Michelin Confirms Data Breach Linked to Oracle EBS Attack appeared first on SecurityWeek.
The cyberattack disrupted information and booking systems and lasted for several hours.Β
The post German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack appeared first on SecurityWeek.
The malware has been preinstalled on many devices but it has also been distributed through Google Play and other app stores.
The post New Keenadu Android Malware Found on Thousands of Devices appeared first on SecurityWeek.
The vulnerability added to CISAβs KEV catalog affects ThreatSonar Anti-Ransomware and it was patched in 2024.
The post CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5 appeared first on SecurityWeek.
GTIG and Mandiant said the zero-day tracked as CVE-2026-22769 has been exploited by UNC6201 since at least 2024.
The post Dell RecoverPoint Zero-Day Exploited by Chinese Cyberespionage Group appeared first on SecurityWeek.
Researchers at ETH Zurich have tested the security of Bitwarden, LastPass, Dashlane, and 1Password password managers.
The post Password Managers Vulnerable to Vault Compromise Under Malicious Server appeared first on SecurityWeek.
Luxury brands were among the dozens of major companies whose Salesforce instances were targeted by Scattered LAPSUS$ Hunters.
The post Dior, Louis Vuitton, Tiffany Fined $25 Million in South Korea After Data Breaches appeared first on SecurityWeek.