Tag: infrastructure
-
CISA warns of active attacks exploiting Android, Linux bugs
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are exploiting vulnerabilities in the Linux kernel and Android operating system. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-warns-of-active-attacks-exploiting-android-linux-bugs/
-
CPS-nativer KI-Agent für Cybersecurity
Der Spezialist für die Sicherheit von cyberphysischen Systemen (CPS), Claroty, stellt seinen neuen CPS-nativen KI-Agenten Claire vor. Dieser ermöglicht es Unternehmen, ihre geschäftskritische Infrastruktur proaktiv mit bislang nicht erreichter Geschwindigkeit und Präzision mit intuitiver Benutzerführung zu schützen. Claire basiert auf dem weltweit fortschrittlichsten CPS-Sprachmodell, das auf über einem Jahrzehnt Branchenexpertise basiert und mit dem größten…
-
Zscaler und Alstom Ein Jahrzehnt gemeinsamer Zero-Trust-Transformation
Zscaler baut die Partnerschaft mit Alstom aus, einem weltweit führenden Unternehmen für intelligente und nachhaltige Mobilität. Aufbauend auf einer zehnjährigen Zusammenarbeit hat Alstom mit Zscaler den Übergang von perimeterbasierter Sicherheit zu einem einheitlichen Zero-Trust-Network-Access (ZTNA)-Ansatz vollzogen. Dieser Wandel hat die komplexe Legacy-Infrastruktur reduziert und den Cyberschutz gestärkt, um sich wandelnden Geschäftsanforderungen und einer KI-gestützten Bedrohungslandschaft…
-
U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The first flaw added to the catalog, tracked…
-
Only 11% of production agents pass the AI agent security bar
Enterprise teams are running AI agents that write code, drive browsers, answer customer calls, manage cloud infrastructure, and query data warehouses with standing … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/03/research-ai-agent-security-capability/
-
HTTP/2 Bomb Remote DoS Exploit Impacts nginx, Apache, IIS, Envoy, and Cloudflare Pingora
A newly disclosed “HTTP/2 Bomb” attack is raising serious concerns across the web infrastructure ecosystem, enabling remote denial-of-service (DoS) conditions against widely deployed servers including nginx, Apache httpd, Microsoft IIS, Envoy, and Cloudflare Pingora. Overview of the HTTP/2 Bomb Attack Security researcher Quang Luong, working with the Codex team, uncovered a novel exploitation technique that…
-
CISA Warns of Cyberattacks Targeting U.S. Tank Gauge Systems
The Cybersecurity and Infrastructure Security Agency (CISA), alongside the FBI, NSA, Department of Energy, EPA, TSA, Department of Transportation, and USDA, has issued a joint warning about ongoing cyberattacks targeting automatic tank gauge (ATG) systems across the United States. These systems are critical components used in energy, chemical, food and agriculture, and transportation sectors to…
-
KI wird wie ein Werkzeug behandelt, wirkt aber wie kritische Infrastruktur – KI trifft falsche Entscheidungen und niemand merkt es rechtzeitig
First seen on security-insider.de Jump to article: www.security-insider.de/ki-fehlentscheidungen-betrieb-ai-dependency-risk-governance-a-2b6a474674c5adfba6f1a680f1afbd80/
-
Palo Alto Networks Sees AI Boom Driving Firewall Demand
CEO Nikesh Arora Says Agentic Workloads Generate Traffic Requiring Inspection. Palo Alto Networks said surging AI infrastructure investment and growing enterprise demand for AI governance are expanding cybersecurity spending, while false positives from advanced AI vulnerability tools underscore the continued need for human oversight. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/palo-alto-networks-sees-ai-boom-driving-firewall-demand-a-31849
-
Anthropic Expands Mythos to Global Critical Infrastructure
Project Glasswing Expansion Reaches Power, Healthcare, Telecom and Water Operators. Anthropic expanded Project Glasswing to 150 additional organizations across more than 15 countries, granting critical infrastructure operators, NATO and cybersecurity agencies controlled access to Claude Mythos Preview as the company seeks broader cyber defense coverage while limiting misuse risks. First seen on govinfosecurity.com Jump to…
-
Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation
Tags: access, control, cve, cybersecurity, exploit, flaw, infrastructure, kev, network, oracle, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.The vulnerability, CVE-2024-21182 (CVSS score: 7.5), allows an unauthenticated attacker with network access to take control of susceptible servers. It was First seen on…
-
U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Palo Alto Networks PAN-OS flaw, tracked as CVE-2024-21182 (CVSS score of 7.5), to its Known Exploited Vulnerabilities (KEV) catalog. The CVE-2024-21182 flaw is an easily exploitable vulnerability affecting Oracle WebLogic…
-
Data dive: Mapping the UK public sector’s hyperscale dependence
UK government and local authorities have built critical infrastructure amid a web of US hyperscaler cloud and other providers, which brings risks of exposure to a narrow set of non-UK suppliers First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366643799/Data-dive-Mapping-the-UK-public-sectors-hyperscale-dependence
-
Anthropic shares Mythos with 150 more organizations, including critical infrastructure operators
The AI firm also said it’s exploring how to help open-source developers deal with a flood of vulnerability reports. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/ai-anthropic-claude-mythos-project-glasswing-expand/821714/
-
Anthropic scales Claude Mythos to critical infrastructure in 15+ countries
Anthropic is expanding Project Glasswing, its security vulnerability program, and access to Mythos to 150 organizations across 15 countries, targeting critical infrastructure in power, water, healthcare, and communications where a cyberattack could affect 100 million people. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/02/anthropic-scales-claude-mythos-to-critical-infrastructure-in-15-countries/
-
Anthropic expanding access to Project Glasswing
Roughly 150 new organizations across critical infrastructure sectors will gain access to Claude Mythos Preview, Anthropic’s most capable, and most restricted, AI model. First seen on cyberscoop.com Jump to article: cyberscoop.com/anthropic-project-glasswing-expansion-critical-infrastructure-claude-mythos/
-
Stolen Gemini API Keys Fuel Automated Telegram Influence Campaign
A long-running Telegram influence and fraud campaign where a solo threat actor leveraged stolen Google Gemini API keys and jailbroken AI to automate content generation, credential theft, and infrastructure operations at scale. Tracked as “bandcampro,” the Russian-speaking operator maintained a MAGA themed Telegram channel, @americanpatriotus, for nearly five years, amassing around 17,000 subscribers. The actor…
-
Critical KMW CCTV Flaw Allows Unauthorised Access to Surveillance Feeds
A critical security vulnerability in KMW CCTV security cameras could allow attackers to gain full, unauthorised access to live surveillance feeds and device settings, raising serious concerns for organisations that rely on these systems in sensitive environments. The issue, tracked as CVE-2026-5386 and disclosed by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) under advisory…
-
CISA Issues Alert on Oracle WebLogic Server Flaw Under Active Exploitation
Tags: cisa, cve, cyber, cybersecurity, exploit, flaw, infrastructure, kev, oracle, risk, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Oracle WebLogic Server vulnerability, tracked as CVE-2024-21182, to its Known Exploited Vulnerabilities (KEV) catalog, warning that the flaw is actively exploited in the wild. The alert, published on June 1, 2026, highlights the urgent risk to organizations that rely on Oracle WebLogic for…
-
GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure
Malware on approximately 2,000 WordPress sites hid C2 instructions in Steam profile comments using invisible Unicode. GoDaddy researchers spotted a command-and-control infrastructure for a malware campaign abusing Valve’s Steam gaming platform. The experts discovered malware on approximately 1,980 WordPress sites that fetches its instructions by reading Steam Community profile comments, where the actual payload is…
-
GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure
Malware on approximately 2,000 WordPress sites hid C2 instructions in Steam profile comments using invisible Unicode. GoDaddy researchers spotted a command-and-control infrastructure for a malware campaign abusing Valve’s Steam gaming platform. The experts discovered malware on approximately 1,980 WordPress sites that fetches its instructions by reading Steam Community profile comments, where the actual payload is…
-
Attackers Exploit Docker, Kubernetes Misconfigs to Breach Hosts
Attackers are increasingly targeting Docker and Kubernetes environments by exploiting misconfigurations, weak isolation boundaries, and insecure APIs to compromise host systems and entire clusters. As containerization becomes the backbone of modern cloud infrastructure, threat actors are shifting focus from traditional endpoints to container ecosystems, where a single weakness can expose critical services at scale. A…
-
Beschlagnahmung von Worktitans-Servern beeinträchtigt Irans Cyberoperationen
Ende Mai haben niederländische Ermittler der Financial Crime investigation of Netherlands (FIOD) in Rechenzentren bei Dronten und Schiphol-Rijk rund 800 Server beschlagnahmt. Das Ziel war der Hosting-Anbieter Worktitans B.V., der auf den ersten Blick wie jedes andere Unternehmen für Internetinfrastruktur aussah. Was die Ermittler jedoch aufdeckten, war weitaus bedeutender: eine Operation, die auf sanktionierter Infrastruktur…
-
U.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Palo Alto Networks PAN-OS flaw, tracked as CVE-2026-0257 (CVSS score of 7.8), to its Known Exploited Vulnerabilities (KEV) catalog. Palo Alto Networks addressed the vulnerability CVE-2026-0257 on May…
-
The Pentagon Finally Admits That Location Data Is a Battlefield Problem
The Pentagon confirmed adversaries are using commercial location data to track U.S. troops, exposing risks tied to smartphones and ad-tech networks. For years, security researchers, privacy advocates, and intelligence analysts have been warning about the same thing: smartphone location data isn’t just an advertising product. It’s surveillance infrastructure that anyone with enough money can access.…
-
WorkTitans-Server beschlagnahmt: Niederländische Ermittler stören Infrastruktur iranischer Hackergruppen
Tags: infrastructureFür Verteidiger bedeutet das: Die nächste Stufe der Cyberabwehr liegt nicht in noch längeren IP-Listen, sondern in besserer Infrastruktur-Intelligence. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/worktitans-server-beschlagnahmt-niederlaendische-ermittler-stoeren-infrastruktur-iranischer-hackergruppen/a45339/
-
Schweizer Telekom-Riese legt Kubernetes-Architektur offen – Swisscom veröffentlicht komplette souveräne Cloud-Infrastruktur
First seen on security-insider.de Jump to article: www.security-insider.de/swisscom-kubernetes-architektur-souveraene-private-cloud-a-b1d80e4d46847571294872bf9b2ea1e9/
-
Dutch authorities arrest men suspected of providing infrastructure for Russian cyber operations
Investigators seized more than 800 servers as they arrested two men suspected of violating European sanctions and assisting pro-Russian cyberattacks and disinformation campaigns. First seen on therecord.media Jump to article: therecord.media/dutch-authorities-arrest-suspects-over-russian-cyber-operations
-
Webinar: Too many tools are slowing network incident response
IT teams often need to jump between monitoring dashboards, infrastructure tools, ticketing systems, and communication platforms during network incidents. This webinar explores how automation and AI-assisted workflows can help reduce manual coordination and improve incident response times. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/webinar-too-many-tools-are-slowing-network-incident-response/