Cyberattack Leads to Beer Shortage as Asahi Recovers – Dark Reading
A ransomware last week left the Asahi brewery in Japan struggling to take orders and deliver its products domestically, as manufacturers become a favored target. – Read More
Cyber
ShinyHunters Wage Broad Corporate Extortion Spree – Krebs on Security
A cybercriminal group that used voice phishing attacks to siphon more than a billion records from Salesforce customers earlier this year has launched a website that threatens to publish data…
Attackers Season Spam With a Touch of ‘Salt’ – Dark Reading
Researchers report an increase in the use of hidden content in spam and malicious email to confuse filters and other security mechanisms. – Read More
10.0-severity RCE flaw puts 60,000 Redis instances at risk – CSO Online
The popular Redis in-memory data store received a patch for a critical vulnerability that leads to remote code execution on the server hosting the database. While the flaw requires authentication…
Security Concerns Shadow Vibe Coding Adoption – Dark Reading
In a recent poll, readers shared how they’re using vibe coding in AppDev (if they are at all). While some found success, others found the risks too great. – Read…
BatShadow Group Uses New Go-Based ‘Vampire Bot’ Malware to Hunt Job Seekers – The Hacker News
A Vietnamese threat actor named BatShadow has been attributed to a new campaign that leverages social engineering tactics to deceive job seekers and digital marketing professionals to deliver a previously…
Medusa Ransomware Actors Exploit Critical Fortra GoAnywhere Flaw – Dark Reading
Researchers say exploitation of CVE-2025-10035 requires a private key, and it’s unclear how Storm-1175 threat actors pulled this off. – Read More
Google’s New AI Doesn’t Just Find Vulnerabilities — It Rewrites Code to Patch Them – The Hacker News
Google’s DeepMind division on Monday announced an artificial intelligence (AI)-powered agent called CodeMender that automatically detects, patches, and rewrites vulnerable code to prevent future exploits. The efforts add to the…
it-sa 2025: Fast 1.000 Security-Anbieter am Start – CSO Online
Weggefährten der it-sa auf der ersten Pressekonferenz (von links): Claudia Plattner, BSI-Präsidentin, Ralf Wintergerst, Präsident des Bitkom, Prof. Norbert Pohlmann, Vorsitzender des Bundesverbandes für IT-Sicherheit „TeleTrusT“ und Joanna Świątkowska von…
Google DeepMind launches an AI agent to fix code vulnerabilities automatically – CSO Online
Google DeepMind has introduced an AI agent that automatically found and fixed software vulnerabilities in open source projects, submitting 72 security patches over the past six months to codebases including…
Phishers turn 1Password’s Watchtower into a blind spot – CSO Online
Malwarebytes has flagged a new phishing campaign that weaponized user trust in 1Password’s breach notification system, adding that an employee nearly handed over their vault credentials to scammers. The lure…
New Research: AI Is Already the #1 Data Exfiltration Channel in the Enterprise – The Hacker News
For years, security leaders have treated artificial intelligence as an “emerging” technology, something to keep an eye on but not yet mission-critical. A new Enterprise AI and SaaS Data Security…
XWorm 6.0 Returns with 35+ Plugins and Enhanced Data Theft Capabilities – The Hacker News
Cybersecurity researchers have charted the evolution of XWorm malware, turning it into a versatile tool for supporting a wide range of malicious actions on compromised hosts. “XWorm’s modular design is…
Patch Now: ‘RediShell’ Threatens Cloud Via Redis RCE – Dark Reading
A 13-year-old flaw with a CVSS score of 10 in the popular data storage service allows for full host takeover, and more than 300k instances are currently exposed. – Read…
13-Year Redis Flaw Exposed: CVSS 10.0 Vulnerability Lets Attackers Run Code Remotely – The Hacker News
Redis has disclosed details of a maximum-severity security flaw in its in-memory database software that could result in remote code execution under certain circumstances. The vulnerability, tracked as CVE-2025-49844 (aka…