Archives: News
News articles and updates
Microsoft Patches Two Actively Exploited Defender Vulnerabilities
Microsoft warns of two security flaws in Defender being exploited in attacks, releases emergency patches for Windows systems.
Showboat Linux Malware Deploys SOCKS5 Proxy Backdoor in Middle East Telecom
Cybersecurity researchers report Showboat Linux malware targeting Middle East telecom firms with a SOCKS5 proxy backdoor, enabling persistent access and data exfiltration.
Google Detects First AI-Generated Zero-Day Exploit
Google researchers detected the first known zero-day exploit generated by artificial intelligence, marking a new phase in cybersecurity threats. The discovery occurred during routine monitoring of vulnerability reports, with the AI-created code targeting a critical software flaw unknown to developers at the time. Key Details The exploit involved malicious code produced by an AI model,...
Skoda Data Breach Hits Online Shop Customers
A Skoda data breach has exposed customer information from the company’s online shop, affecting buyers who placed orders through the platform. The incident came to light over the weekend, with Skoda confirming the breach on Monday. Breach Details Skoda Auto, the Czech carmaker, notified customers that unauthorized access occurred to its e-commerce system. Data potentially...
Cloudflare Lays Off 1,100 Employees in AI-Driven Restructuring
Cloudflare announced on Friday the layoff of 1,100 employees as part of a restructuring effort focused on artificial intelligence development. The cuts represent about 9% of its workforce and aim to redirect resources toward AI initiatives. Key Details The company confirmed the layoffs affect multiple departments, with a concentration in sales, marketing, and operations. Cloudflare...
1,800+ MCP servers exposed without authentication: How zero trust can secure the AI agent revolution
Security researchers have identified more than 1,800 Model Context Protocol (MCP) servers exposed online without any authentication controls. The finding, reported this week, highlights risks as AI agents gain wider use in enterprise settings. Scope of the Exposure Scans detected the servers accessible over public internet interfaces. MCP, an open protocol for connecting AI models...
GitHub Internal Repositories Breached via Malicious VS Code Extension
GitHub confirms unauthorized access to internal repositories after an employee installed a compromised Nx Console extension for VS Code.
CISA Administrator Accidentally Leaks AWS GovCloud Keys on GitHub
CISA confirmed a staffer posted active AWS GovCloud access keys on a public GitHub repository, exposing sensitive government cloud accounts for several days before revocation.
Typosquatting Shifts Focus to Software Supply Chains
Security researchers report rising typosquatting attacks on npm and PyPI registries, where attackers publish malicious packages that closely resemble trusted libraries.
GitHub Confirms Employee Device Breach Exposes 3,800 Internal Repos
An attacker used a compromised staff laptop to steal more than 3,800 private GitHub repositories containing internal code and tools.