AI-built ransomware toolkit automates EDR evasion, AD discovery
A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade endpoint detection and response (EDR) solutions. [...]
A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade endpoint detection and response (EDR) solutions. [...]
O Google anunciou ontem sua mais recente atualização do Android, que inclui correções para 124 vulnerabilidades, incluindo um zero-day explorado em ataques direcionados, conforme comunicado da empresa. A falha explorada, registrada como CVE-2025-48595, é descrita como um problema…
China is stealing data from high-value targets via a sneaky, double-layer spear-phishing campaign that includes the Azureveil malware.
Google on Monday released patches for 124 security vulnerabilities impacting its Android operating system for the month of June 2026, including one high-severity flaw in the Framework component that has come under active exploitation. Tracked as CVE-2025-48595 (CVSS score: 8.4),…
The Russian hacking group known as Gamaredon has been attributed to the continued exploitation of a WinRAR vulnerability to deliver multiple malware families aimed at data theft and propagation. Per Sekoia, the activity involves the weaponization of CVE-2025-8088, a path travers…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. The vulnerability, CVE-2024-21182 (CVSS…
A empresa de segurança de credenciais ReversingLabs descobriu um ataque coordenado em cadeia de suprimentos no escopo @redhat-cloud-services do npm – justamente o namespace da Red Hat. Ali, um invasor publicou, ontem, versões maliciosas de 31 pacotes em um intervalo de apenas 72 …
Fake ChatGPT desktop app ads pushed password-stealing malware by abusing trusted AI links, hiding from scanners, and tricking users into downloads.
Multiple Instagram users had their accounts hijacked after attackers convinced Meta's AI-powered support tools that they were the legitimate owners. [...]
Hackers abused Meta’s AI support bot to hijack major Instagram accounts, bypassing security checks as videos showed the flaw before Meta fixed the issue.
Um relatório divulgado pela empresa brasileira DANRESA revelou que a campanha fraudulenta do álbum da Copa do Mundo FIFA 2026 opera como um ecossistema econômico maduro, abusando de servidores de nuvem legítimos e utilizando empresas intermediárias de fachada para lavar dinheiro …
Golpes bancários foram alvos da Operação Linha Fantasma, deflagrada pela Polícia Federal (PF) nesta terça-feira (2). A ação mira no esquema da “falsa central telefônica”, que aborda vítimas através do envio de mensagens com um alerta de compra suspeita e um número 0800 para supos…
CISA has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched two years ago and is now actively exploited in attacks. [...]
GoDaddy researchers found WordPress malware using Steam Community profile comments to hide encoded command and control data, with nearly 1,980 sites affected.
AI-driven exploitation timelines are rapidly shrinking, and they are not going to stop shrinking. Vulnerabilities are being discovered, reproduced, and weaponized faster than ever in the history of enterprise security. As a result, the window between a vulnerability being disclos…
Configurações inseguras em contêineres estão abrindo caminho para cibercriminosos comprometerem ambientes Docker e Kubernetes, com risco de escape para o sistema hospedeiro e controle de recursos críticos da infraestrutura. O problema não está apenas em falhas de software, mas em…
Google has released the June 2026 Android security patches to address 124 vulnerabilities, including one zero-day flaw exploited in targeted attacks. [...]
Data breaches have been announced by Bridle Trails Family Dentistry, Verber Dental Group, and Bronsky Orthodontics. Across the three incidents, […] The post Patient Data Exposed in Cyberattacks on Dental Practices appeared first on The HIPAA Journal.
Cybersecurity researchers have disclosed details of a spear-phishing campaign likely undertaken by the Pakistan-aligned SideCopy group targeting Afghanistan's Ministry of Finance with an open-source remote access trojan called Xeno RAT. "The campaign opens with a spear phishing …
A vulnerabilidade CVE-2026-8732 (CVSS de 9.8) do plugin WP Maps Pro permite que atacantes não autenticados criem contas administrativas e assumam o controle total de sites WordPress afetados, conforme alerta publicado ontem pela empresa de segurança Defiant. A empresa afirma ter …