access ai android api apple attack authentication backdoor breach business ceo china cisa cisco ciso cloud compliance control credentials crypto cve cyber cyberattack cybercrime cybersecurity data data-breach defense detection email exploit finance flaw framework fraud germany google governance government group hacker hacking healthcare identity infrastructure intelligence Internet jobs law leak linux malicious malware microsoft monitoring network open-source password phishing privacy ransomware remote-code-execution resilience risk russia scam service software strategy supply-chain technology theft threat tool unclassified update usa vulnerability windows zero-day
-
Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit
Exploiting the PAN-OS GlobalProtect VPN vulnerability requires certain conditions, but adversaries have done so in two attack waves that started in mid-May. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/patch-palo-alto-auth-bypass-bug-exploit also interesting: Enterprise-specific zero-day exploits on the rise, Google warns China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures SonicWall SSL VPN…
-
Microsoft investigates Office Apps, Teams file access issues
Microsoft says an ongoing incident is preventing users of its Teams collaboration platform and Office for the web cloud-based productivity suite from opening files. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-investigates-office-apps-teams-file-access-issues/ also interesting: December Patch Tuesday: Windows Cloud Files Mini Filter Driver hole already being exploited FAQ on CVE-2026-21514: OLE bypass N-Day in Microsoft…
-
IT Security Guru picks for Infosecurity Europe 2026
Tags: unclassifiedWith Infosecurity Europe kicking off tomorrow, many of us will be fine tuning our schedules and prepping for the festivities to kick off. The Gurus have been busy collecting a selection of unmissable events to help you plan your trip and ensure you get the most out of your visit. Here’s a selection of ones…
-
RaccoonLine Publishes 2026 dVPN Buyer’s Guide for Privacy-Focused Users
Roma, ІталіÑ, 1st June 2026, CyberNewswire First seen on hackread.com Jump to article: hackread.com/raccoonline-publishes-2026-dvpn-buyers-guide-for-privacy-focused-users/ also interesting: Gen AI use cases rising rapidly for cybersecurity, but concerns remain Is Your Hospital Sharing Patient Data with Facebook? A Guide for Security and Privacy Teams Cybersecurity Snapshot: AI Security Skills Drive Up Cyber Salaries, as Cyber Teams Grow…
-
Afghan finance officials targeted by suspected Pakistani cyberespionage campaign
A suspected Pakistan-linked hacking group has targeted Afghanistan’s Ministry of Finance and provincial government officials in a new cyberespionage campaign, researchers have found. First seen on therecord.media Jump to article: therecord.media/afghan-officials-targeted-by-sidecopy also interesting: Gen AI is transforming the cyber threat landscape by democratizing vulnerability hunting China-linked group Houken hit French organizations using zero-days Top 10…
-
China-nahe APT-Gruppe Webworm nimmt europäische Behörden ins Visier – EchoCreep und GraphWorm verstecken Angriffsbefehle in Cloud-Diensten
First seen on security-insider.de Jump to article: www.security-insider.de/webworm-echocreep-graphworm-backdoor-discord-graph-api-europa-a-8bd6e43eba9a87a50c79849b64e1b607/ also interesting: How are you securing your communications in the wake of the Volt Typhoon revelations? Chinese APT Exploits BeyondTrust API Key to Access U.S. Treasury Systems and Documents Unusual attack linked to Chinese APT group combines espionage and ransomware UK blames Russia’s infamous ‘Fancy Bear’ group…
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
Critical Flowise Flaw Gives Attackers Full Server Control
Obsidian publishes PoC for a 1-click Flowise RCE that can fully compromise self-hosted servers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/flowise-mcp-rce-poc/ also interesting: PoC Released for Critical Erlang/OTP SSH RCE Vulnerability Anatomy of a Modern Threat: Deconstructing the Figma MCP Vulnerability Oracle fixes critical RCE flaw CVE-2026-21992 in Identity Manager Ivanti, Fortinet, SAP, VMware,…
-
âš¡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More
Monday hit like a cron job with anger issues.A busted auth path here, a repo-side faceplant there, some “patched-ish” thing already getting chewed on in the wild, and then the usual bonus round: poisoned dev tools, sketchy forum chatter, phishing kits pretending to be productivity, and AI lowering the bar for people who already thought…
-
Attackers Exploit Docker, Kubernetes Misconfigs to Breach Hosts
Attackers are increasingly targeting Docker and Kubernetes environments by exploiting misconfigurations, weak isolation boundaries, and insecure APIs to compromise host systems and entire clusters. As containerization becomes the backbone of modern cloud infrastructure, threat actors are shifting focus from traditional endpoints to container ecosystems, where a single weakness can expose critical services at scale. A…
-
Race Against Time: Why Faster Vulnerability Alerts Matter
Attackers are exploiting vulnerabilities faster than many organizations can identify and patch them. SecAlerts explains why faster vulnerability alerts can help reduce exposure and improve response times. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/race-against-time-why-faster-vulnerability-alerts-matter/ also interesting: SonicWall Arbitrary OS Commands Execution Vulnerability Exploited in Attacks Medusa Ransomware Exploiting GoAnywhere MFT Flaw, Confirms Microsoft Lack…
-
Brute-force attack triggers Dashlane account lockouts
Password manager Dashlane has confirmed that a brute-force attack targeting user accounts triggered temporary account suspensions and authentication issues. The company first … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/01/dashlane-brute-force-attack-user-accounts/ also interesting: Top challenges holding back CISOs’ agendas Clorox Sues IT Service Provider Cognizant for Causing 2023 Cyber-Attack When AI nukes your database: The…
-
Windows Netlogon RCE exploited, domain controllers at risk (CVE-2026-41089)
CVE-2026-41089, a critical Windows Netlogon RCE flaw that allows remote code execution, is now actively exploited in the wild, the Centre for Cybersecurity Belgium (CCB) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/01/windows-netlogon-rce-exploited-cve-2026-41089/ also interesting: Hackers breach Microsoft IIS services using Cityworks RCE bug Top 7 zero-day exploitation trends of 2024 CISA warns of…
-
Redcentric continues on MSP journey
Firm shares trading update and welcomes fresh CFO as it pursues its path to becoming a pure-play MSP First seen on computerweekly.com Jump to article: www.computerweekly.com/microscope/news/366643685/Redcentric-continues-on-MSP-journey also interesting: MSP Update: Service Providers Come Together to Help with CrowdStrike IT Outage MSP Update: Cloud Market Share 2024 for Amazon AWS, Microsoft Azure, Google Cloud Security Update:…
-
How to Get a Reddit API Key in 2026: Step-by-Step Guide
Getting a Reddit API key starts with creating an application through Reddit’s developer portal and understanding how its… First seen on hackread.com Jump to article: hackread.com/how-to-get-reddit-api-key-2026-step-by-step-guide/ also interesting: DeepSeek Deep Dive Part 1: Creating Malware, Including Keyloggers and Ransomware AI, Quantum and the Evolving Threat Landscape: Key Findings from the Thales 2025 Data Threat Report…
-
Ransomware Operators Keep Business Hours. The Data Proves It
16,699 ransomware leak posts over 2 years show 84% drop MondayFriday, peak at European afternoon hours. October spikes yearly. Someone analyzed 16,699 ransomware leak-site posts across 200 groups over two years and asked the question most threat intelligence reports dance around: when does this actually happen? The answer is mundane and useful. Ransomware runs on…
-
CIFSwitch: KI-Agenten finden 19 Jahre alte Root-Lücke im Linux-Kernel
Angreifer können sich auf vielen Linux-Systemen Root-Rechte verschaffen. Hauptursache ist ein vor fast zwei Jahrzehnten eingeführter Kernel-Bug. First seen on golem.de Jump to article: www.golem.de/news/cifswitch-ki-agenten-finden-19-jahre-alte-root-luecke-im-linux-kernel-2606-209261.html also interesting: 6 ways hackers hide their tracks GoBruteforcer Botnet Targets 50K-plus Linux Servers ‘Copy Fail’ is a real Linux security crisis wrapped in AI slop Breach Roundup: Shai-Hulud Copycat…
-
Infosecurity Europe: Tabletop Exercise to Test How CISOs Respond to Major Supermarket Cyber-Attack
Semperis is set to bring ‘Enter the War Room: A Tabletop Experience’ to Infosecurity Europe to help cybersecurity leaders prepare to face real incidents First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/infosecurity-europe-semperis/ also interesting: 10 insights on the state of AI security from RSA Conference A Unified Approach to Exposure Management: Introducing Tenable One Connectors…
-
Critical Plesk Vulnerability Lets Users Execute Server Commands
A newly disclosed critical vulnerability in Plesk is raising serious security concerns after researchers confirmed that low-privileged users can execute arbitrary commands on affected servers. Tracked as CVE-2026-44962, the vulnerability affects Plesk for Linux and is linked to improper input handling in the APS Application Catalog search functionality. The issue was published in the GitHub…
-
Critical Magento Cache Plugin Vulnerability Enables Remote Code Execution Attacks
A critical security vulnerability in a widely used Magento extension is exposing thousands of online stores to remote code execution (RCE) attacks. The vulnerability, tracked as CVE-2026-45247 and rated 9.8 on the CVSS scale, allows attackers to execute arbitrary code on affected servers without authentication. The vulnerability stems from improper handling of user-controlled input within…
-
Microsoft fixes outage affecting MFA setup, MySignIn service
Microsoft is working to address an ongoing incident preventing customers from setting up multi-factor authentication (MFA) or accessing the My Sign-Ins platform. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-fixes-outage-affecting-mfa-setup-mysignin-service/ also interesting: Hackers Exploit ADFS to Bypass MFA and Access Critical Systems 11 ways cybercriminals are making phishing more potent than ever Malicious actors increasingly put…
-
Critical Windows Netlogon RCE flaw now exploited in attacks
Tags: attack, country, cybersecurity, exploit, flaw, rce, remote-code-execution, threat, vulnerability, windowsThe Centre for Cybersecurity Belgium (CCB), the country’s national authority for cybersecurity, warned on Friday that threat actors are now exploiting a recently patched critical Windows Netlogon vulnerability in attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/critical-windows-netlogon-remote-code-execution-flaw-now-exploited-in-attacks/ also interesting: Hackers breach Microsoft IIS services using Cityworks RCE bug Hackers breach Microsoft IIS services using…
-
Nine in Ten Security Leaders Concerned About AI-Generated Code Risks as Salt Security Launches New Governance Tool
The rapid adoption of AI coding assistants is creating a new governance challenge for enterprise security teams, according to research released by Salt Security, which found that nine in ten security leaders are concerned about the security risks associated with AI-generated code. The research, AI Coding Assistants and the New Security Challenge, surveyed 100 IT…
-
Microsoft Defender Vulnerability Management gets a smarter exposure score
Microsoft Defender Vulnerability Management’s updated exposure score model adds vulnerability risk signals and asset context to help teams understand where risk is … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/01/microsoft-defender-exposure-score-update/ also interesting: Black Hat Europe preview: Cryptographic protocol attacks and AI in the spotlight Applying Tenable’s Risk-based Vulnerability Management to the Australian Cyber Security…
-
Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts
pretalx XSS flaw lets attackers hijack conference organizer accounts, steal sessions, auto-accept talks, and demote admins. Patched in v2026.1.0. First seen on hackread.com Jump to article: hackread.com/zero-click-pretalx-xss-hackers-hijack-conference-accounts/ also interesting: Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts Breach Roundup: SAP NetWeaver Flaw Draws…
-
Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts
pretalx XSS flaw lets attackers hijack conference organizer accounts, steal sessions, auto-accept talks, and demote admins. Patched in v2026.1.0. First seen on hackread.com Jump to article: hackread.com/zero-click-pretalx-xss-hackers-hijack-conference-accounts/ also interesting: Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts Government webmail hacked via XSS bugs in global spy campaign Getting the Most Value Out of…
-
Nach 11 Jahren Verzweiflung: Claude knackt Passwort einer Bitcoin-Wallet mit 400.000 Dollar
Tags: passwordFirst seen on t3n.de Jump to article: t3n.de/news/bitcoin-wallet-verzweiflung-claude-passwort-1742871/ also interesting: How Identity Plays a Part in 5 Stages of a Cyber Attack Phishing kit Salty2FA washes away confidence in MFA How to tell if your password manager meets HIPAA expectations This fake Windows support website delivers password-stealing malware
-
Verrücktester Leak des Jahres? Pixel Watch 5 offenbar beim Tauchen in der Karibik gefunden
Tags: leakFirst seen on t3n.de Jump to article: t3n.de/news/verrueckter-leak-pixel-watch-5-beim-tauchen-gefunden-1745121/ also interesting: Police accessed phone records of ‘trouble making journalists’ Data Vigilante Leaks 8 Million Employee Records from Amazon, HP and Others Microsoft Warns Default Helm Charts Could Leave Kubernetes Apps Exposed to Data Leaks After SharePoint attacks, Microsoft stops sharing PoC exploit code with China
-
Infosecurity Europe: AI SOCs Will Still Need SOC Analysts, Security Vendors Say
Top cybersecurity vendors said AI won’t replace entry-level only routine ticket-taking and triage First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ai-soc-still-need-analysts/ also interesting: Top challenges holding back CISOs’ agendas The Current AI Revolution Will (Finally) Transform Your SOC Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting Top 10 vendors for AI-enabled security, according…
-
The Security Growth Platform: Why MSPs Are Moving Beyond vCISO Tools
Three years ago, the practical question for an MSP building a cybersecurity practice was which “vCISO platform” to buy. The term was good shorthand for the work at the time: assessments, advisory, reporting, maybe a compliance module bolted on the side. The work has since outgrown the descriptor.A Security Growth Platform is the more precise…
-
Microsoft confirms outage affecting MFA, My Sign-Ins platform
Microsoft is working to address an ongoing incident preventing customers from setting up multi-factor authentication (MFA) or accessing the My Sign-Ins platform. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-confirms-outage-affecting-mfa-my-sign-ins-platform/ also interesting: 9 VPN alternatives for securing remote network access Microsoft MFA outage blocking access to Microsoft 365 apps Microsoft pushes a lot of products…
-
Webinar tomorrow: From alert to resolution in network incident response
Network incidents are often detected quickly, but investigations and coordination can delay resolution. Join our webinar tomorrow to learn how automation and AI-assisted workflows can help IT teams accelerate incident response. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/webinar-tomorrow-from-alert-to-resolution-in-network-incident-response/ also interesting: TDL 016 – Speed, Risk, and Responsibility in the Age of AI – Rafael…
-
How NIST fumbled management of the National Vulnerability Database
A US federal watchdog has outlined how the National Institute of Standards and Technology (NIST) failed to effectively manage the growing backlog of unprocessed cybersecurity … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/01/nist-nvd-management-problems/ also interesting: Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework Notable post-quantum cryptography initiatives…
-
CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password
CVE-2026-8732 in WP Maps Pro lets unauthenticated attackers create WordPress admin accounts. 2,858 attacks blocked in 24 hours. WP Maps Pro plugin allows WordPress site owners to embed Google Maps and OpenStreetMap with markers, listings, and location search. It’s a store locator tool. Unremarkable. The plugin is installed on over 15,000 websites, according to sale…
-
How to Get the Most From Your Explainer Video Production Services
Tags: serviceVideo can simplify a hard offer, shorten sales conversations, and improve recall. Those gains depend on disciplined planning… First seen on hackread.com Jump to article: hackread.com/getting-most-from-explainer-video-production-services/ also interesting: Security industry has ransomware-as-a-service model wrong, says expert Microsoft, Google Offering Cyber Help to Rural Hospitals The Cloud and AI Velocity Trap: Why Governance Is Falling Behind…
-
MegadolonKampagne erschüttert Software-Lieferkette
Tausende Github-Repositorys wurden mit Malware infiziert, die Anmeldedaten stiehlt. Die neueste Bedrohungskampagne von Megadolon erschüttert die ohnehin schon stark belastete Software-Lieferkette. Ein Kommentar von Shane Barney, CISO von Keeper Security <<Die Megalodon-Kampagne zeigt, wo das Risiko in der Software-Lieferkette tatsächlich liegt. Innerhalb von nur sechs Stunden schoben Angreifer bösartige Commits in über 5.500 Github-Repositorys ein…
-
Was Cybersicherheit von der Krankenhaushygiene lernen kann
Tags: cyersecurityAls der Wiener Arzt Ignaz Semmelweis 1847 in Wien vorschlug, sich vor jedem Eingriff die Hände zu waschen, sank die Sterblichkeitsrate auf seiner Station von über zehn auf unter zwei Prozent. Die Fachwelt reagierte mit Ablehnung, denn es erschien schlicht zu simpel, dass eine so einfache Lösung solch drastische Auswirkungen haben könnte. Heute ist Hygiene…
-
Unknown hacker group targeted Russian maritime universities, diplomats for nearly two years
More than half of the attacks observed over the past year targeted educational institutions, particularly maritime universities and schools that train personnel for Russia’s shipping, inland waterway and fishing industries. First seen on therecord.media Jump to article: therecord.media/unknown-hacking-group-targeting-russia-for-nearly-two-years also interesting: U.S. Offers $10 Million for Info on Russian Cadet Blizzard Hackers Behind Major Attacks Hackers…
-
Microsoft says it will not pursue security researchers after zero-day backlash
Microsoft said it is taking the feedback seriously, adding: “To be clear about our approach to legal matters, we have no intention to pursue action against individuals conducting or publishing their security research.” First seen on therecord.media Jump to article: therecord.media/microsoft-says-it-will-not-pursue-security-researchers-disclosure also interesting: Jetzt patchen: Gefährliche Windows-Lücken werden aktiv ausgenutzt Windows CLFS Zero-Day Vulnerability Actively…
-
Neue Phishing-Plattform: FBI warnt Nutzer von Outlook, Teams und Onedrive
Tags: phishingFirst seen on t3n.de Jump to article: t3n.de/news/phishing-plattform-fbi-outlook-teams-und-onedrive-1744761/ also interesting: Angriff per Antwort: Avanan warnt vor neuer Phishing-Technik Browsers Net More Phish, But Targeted Attacks Swim Through Weaponized Copyright Documents Used by Threat Actors to Target Key Employees with Noodlophile Stealer What security teams miss in email attacks
-
Mehr KI, mehr Probleme? Hacker George Hotz hält Agenten für einen teuren Fehler
First seen on t3n.de Jump to article: t3n.de/news/george-hotz-ki-probleme-1744019/ also interesting: OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials Salesloft: Hacker broke into systems in March through GitHub account Phishing, sometimes with AI’s help, topped initial-access methods in Q1, Cisco says New AI DDoS Attacks Are Smarter. Learn How to…
-
Fake-Zahlung, Mitleidsstory, Phishing: So erkennst du Betrug auf Kleinanzeigen
First seen on t3n.de Jump to article: t3n.de/news/kleinanzeigen-betrug-fake-zahlung-mitleidsstory-phishing-erkennen-1724757/ also interesting: Phishing Prevention Framework Reduces Incidents by Half Phishing, Fraud, and Stolen Data: Europol Takes Down Cybercrime Network The CISO succession crisis: why companies have no plan and how to change that CISOs step into the AI spotlight
-
Zoff mit Microsoft: Verärgerter Sicherheitsforscher kündigt Bitskrieg an
Der verärgerte Sicherheitsforscher Chaotic Eclipse will im Juni einen neuen Bitlocker-Exploit leaken. Microsoft kämpft derweil gegen einen Shitstorm. First seen on golem.de Jump to article: www.golem.de/news/zoff-mit-microsoft-veraergerter-sicherheitsforscher-kuendigt-bitskrieg-an-2606-209243.html also interesting: CVE-2024-7971: North Korean APT Citrine Sleet Exploits Chromium Zero-Day OilRig Hackers Exploiting Microsoft Exchange Server To Steal Login Details âš¡ THN Weekly Recap: Alerts on Zero-Day Exploits,…
-
FSB Group Gamaredon Hides Worm in Windows Data Streams
FSB-linked Gamaredon concealed a fileless worm in NTFS data streams to spy on Ukraine targets First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/gamaredon-worm-ntfs-data-streams/ also interesting: The 2024 cyberwar playbook: Tricks used by nation-state actors Russian cyberespionage groups target Signal users with fake group invites North Korea-linked Konni APT used Google Find Hub to erase data…
-
OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack
Tags: android, attack, authentication, breach, cybersecurity, github, malicious, openai, supply-chain, toolCybersecurity researchers have disclosed details of a new malicious supply chain campaign that’s targeting developers using OpenAI Codex through a legitimate-looking remote web UI.The tool, named codexui-android, is advertised on GitHub and npm as a remote web UI for OpenAI Codex, attracting over 29,000 weekly downloads. The package is still available for download from the…
-
No Lawsuits Against Researchers in Nightmare-Eclipse Row
Microsoft has issued a clarifying statement, assuring the global cybersecurity community that it has no intention of pursuing legal action against security researchers conducting or publishing legitimate security research. A significant walkback amid the firestorm sparked by its earlier confrontation with a researcher known as >>Nightmare-Eclipse.<< The controversy began in April 2026 when an anonymous researcher using…