Cheap Hardware Module Bypasses AMD, Intel Memory Encryption – Dark Reading
Researchers built an inexpensive device that circumvents chipmakers’ confidential computing protections and reveals weaknesses in scalable memory encryption. – Read More
Dark Reading
DPRK’s FlexibleFerret Tightens macOS Grip – Dark Reading
The actor behind the “Contagious Interview” campaign is continuing to refine its tactics and social engineering scams to wrest credentials from macOS users. – Read More
With Friends Like These: China Spies on Russian IT Orgs – Dark Reading
State-linked hackers stayed under the radar by using a variety of commercial cloud services for command-and-control communications. – Read More
As Gen Z Enters Cybersecurity, Jury Is Out on AI’s Impact – Dark Reading
Despite possibly supplanting some young analysts, one Gen Z cybersecurity specialist sees AI helping teach those willing to learn and removing drudge work. – Read More
‘JackFix’ Attack Circumvents ClickFix Mitigations – Dark Reading
A new ClickFix variant ratchets up the psychological pressure to 100 and addresses some technical mitigations to classic ClickFix attacks. – Read More
ShadowRay 2.0 Turns AI Clusters into Crypto Botnets – Dark Reading
A threat actor is leveraging a flaw in the Ray framework to hijack AI infrastructure worldwide and distribute a self-propagating cryptomining and data theft botnet. – Read More
Critical Flaw in Oracle Identity Manager Under Exploitation – Dark Reading
The exploitation of CVE-2025-61757 follows a breach of Oracle Cloud earlier this year as well as a recent extortion campaign targeting Oracle E-Business Suite customers. – Read More
Infamous Shai-hulud Worm Resurfaces From the Depths – Dark Reading
This campaign introduces a new variant that executes malicious code during preinstall, significantly increasing potential exposure in build and runtime environments, researchers said. – Read More
Vision Language Models Keep an Eye on Physical Security – Dark Reading
Advancements in vision language models expanded models reasoning capabilities to help protect employee safety. – Read More
Deja Vu: Salesforce Customers Hacked Again, Via Gainsight – Dark Reading
In a repeat of similar attacks during the summer, threat actors affiliated with the ShinyHunters extortion group used a third-party application to steal organizations’ Salesforce data. – Read More
LINE Messaging Bugs Open Asian Users to Cyber Espionage – Dark Reading
In a potential gift to geopolitical adversaries, the encrypted messaging app uses a leaky custom protocol that allows message replays, impersonation attacks, and sensitive information exposure from chats. – Read…
Cloudflare’s One-Stop-Shop Convenience Takes Down Global Digital Economy – Dark Reading
Even the most advanced systems like Cloudflare can fall victim to software issues and become a global point of failure, Dr. David Utzke argues, adding that the recent outage should…
Hack the Hackers: 6 Laws for Staying Ahead of the Attackers – Dark Reading
A new security framework responds to a shift in attackers’ tactics, one that allows them to infiltrate enterprises ‘silently’ through their own policies. – Read More
With AI Reshaping Entry-Level Cyber, What Happens to the Security Talent Pipeline? – Dark Reading
Automation is rewriting early-career cybersecurity work, raising urgent questions about how the next generation of security professionals will gain real-world expertise. – Read More
Switching to Offense: US Makes Cyber Strategy Changes – Dark Reading
The US national cyber director describes the next cyber strategy as focusing “on shaping adversary behavior,” adding consequences and aggressive response. – Read More