Security Boulevard

How GitGuardian Enables Rapid Response to the LiteLLM Supply Chain Attack

Learn how to detect compromise, assess your exposure to the LiteLLM supply chain attack, and use GitGuardian to orchestrate ...

CISA: New Langflow flaw actively exploited to hijack AI workflows

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...

Internet Yiff Machine: We hacked 93GB of “anonymous” crime tips

In its release note, Internet Yiff Machine says the data contains 8.3 million tips and that P3 lacked numerous security ...
Hackaday

This Week In Security: Second Verse, Worse Than The First

Isn’t there some claim events come in threes? After the extremely rare leak of the iOS Coruna exploit chain recently, now we have details from Google on a second significant exploit in the ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

FBI says Iranian hackers are using Telegram to steal data in malware attacks

Hackers working for Iran’s government are using Telegram in hacking operations that use malware to target dissidents, ...
Center for Strategic and International StudiesOpinion

Iran’s Next Move: How to Counter Tehran’s Multidomain Punishment Campaign

Iran is executing a multidomain punishment campaign across energy, cyber, and maritime systems to coerce the United States ...

Teens get probation after using AI to create fake nudes of classmates

Two teenage boys have been given probation after using artificial intelligence to create hundreds of fake nude photos of ...
Microsoft

Case study: How predictive shielding in Defender stopped GPO-based ransomware before it started

Microsoft Defender stopped a human-operated ransomware attack that abused Group Policy Objects (GPOs) to disable defenses and ...

14,000 Devices Were Hijacked To Create An Unprecedented Cyberattack

A massive DDOS attack has impacted tens of thousands of devices, and the options for being able to fight back against such an ...