China Hijacks Captive Portals to Spy on Asian Diplomats – Dark Reading
The Mustang Panda APT is hijacking Google Chrome browsers when they attempt to connect to new networks and redirecting them to phishing sites. – Read More
Google: Salesforce Attacks Stemmed From Third-Party App – Dark Reading
A group tracked as UNC6395 engaged in “widespread data theft” via compromised OAuth tokens from a third-party app called Salesloft Drift. – Read More
Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks – The Hacker News
The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion attacks targeting cloud environments. “Unlike traditional on-premises ransomware, where the…
Whistleblower: DOGE put Social Security database covering 300 million Americans on insecure cloud – CSO Online
The Elon Musk–founded Department of Government Efficiency (DOGE) uploaded to an insecure Amazon Web Services server a copy of Americans’ Social Security data, risking the security of critical personal information…
Someone Created First AI-Powered Ransomware Using OpenAI’s gpt-oss:20b Model – The Hacker News
Cybersecurity company ESET has disclosed that it discovered an artificial intelligence (AI)-powered ransomware variant codenamed PromptLock. Written in Golang, the newly identified strain uses the gpt-oss:20b model from OpenAI locally…
Storm-0501 debuts a brutal hybrid ransomware attack chain – CSO Online
Microsoft Threat Intelligence today released a report on the financially motivated group Storm-0501, warning that the threat actor has sharpened its ransomware tactics by exploiting hijacked privileged accounts to move…
Storm-0501 Hits Enterprise With ‘Cloud-Based Ransomware’ Attack – Dark Reading
The financially motivated threat group used cloud resources to conduct a complex, ransomware-style attack against an enterprise victim. – Read More
Anthropic Disrupts AI-Powered Cyberattacks Automating Theft and Extortion Across Critical Sectors – The Hacker News
Anthropic on Wednesday revealed that it disrupted a sophisticated operation that weaponized its artificial intelligence (AI)-powered chatbot Claude to conduct large-scale theft and extortion of personal data in July 2025.…
UK and allies expose China-based technology companies for enabling global cyber campaign against critical networks – NCSC News
The NCSC and international partners share technical details of malicious activities and urge organisations to take mitigative actions. – Read More
Fachkräftemangel bedroht Cybersicherheit – CSO Online
Um die Cybersicherheit in Unternehmen zu stärken, fehlt es derzeit nach wie vor an Fachkräften. Dmitry Kovalchuk – shutterstock.com Ein aktueller Bericht von Accenture besagt, dass lediglich jedes dritte Unternehmen…
ShadowSilk Hits 36 Government Targets in Central Asia and APAC Using Telegram Bots – The Hacker News
A threat activity cluster known as ShadowSilk has been attributed to a fresh set of attacks targeting government entities within Central Asia and Asia-Pacific (APAC). According to Group-IB, nearly three…
AI-Powered Ransomware Has Arrived With ‘PromptLock’ – Dark Reading
Researchers raise the alarm that a new, rapidly evolving ransomware strain uses an OpenAI model to render and execute malicious code in real time, ushering in a new era of…
Gaps in California Privacy Law: Half of Data Brokers Ignore Requests – Dark Reading
Failure to comply with consumer data access and deletion requests highlights the urgent need for standardized verification processes and stronger enforcement mechanisms to protect consumer privacy. – Read More
The 5 Golden Rules of Safe AI Adoption – The Hacker News
Employees are experimenting with AI at record speed. They are drafting emails, analyzing data, and transforming the workplace. The problem is not the pace of AI adoption, but the lack…
Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data – The Hacker News
A widespread data theft campaign has allowed hackers to breach sales automation platform Salesloft to steal OAuth and refresh tokens associated with the Drift artificial intelligence (AI) chat agent. The…