Breaches, vulnerabilities, cyber incidents.
Security teams are overwhelmed by phishing, BEC, and account takeover alerts. A webinar highlights behavioral AI to automate detection and response, reducing alert fatigue. This approach aims to improve operational efficiency by cutting through the noise.
Attackers deployed a Golang-based sniffer targeting 430,000 FortiGate firewalls, extracting 110 million credentials in an ongoing global campaign. The malware intercepts cleartext credentials from network traffic, turning firewalls into credential stealers. Fortinet has issued patches, but many devices remain vulnerable.
LastPass disclosed that hackers stole customer support case data after a breach at its tech partner Klue. The incident marks the second data breach for LastPass customers in recent years. No password vaults were compromised, but support records containing customer details were accessed.
Agentic AI automates threat response but introduces new risks from over-reliance on autonomous systems. Security teams face 'autopilot fatigue' as they struggle to monitor AI decisions. A 2024 study found 68% of firms using agentic AI reported at least one critical failure due to unchecked automation.
SocGholish, a malware loader, uses traffic distribution systems (TDSs) to deliver initial access to networks for groups like Evil Corp. A recent takedown disrupted its infrastructure, highlighting the role of TDSs in cybercrime. The operation removed key servers, but similar threats remain active.
LastPass confirmed hackers accessed customer data from its Salesforce environment after stealing OAuth tokens in the Klue supply chain attack. The breach exposed customer names, email addresses, and billing details. LastPass said no encrypted vaults or master passwords were compromised.
Attackers weaponize new vulnerabilities faster than organizations can patch. Picus Security shows how teams can validate exploitability without a public exploit. This approach helps prioritize patching by confirming actual risk.
Meta is investigating security concerns around an internal mouse-tracking tool used to monitor employees and train AI. The program has been paused, but the duration of the halt is unclear. The tool tracks cursor movements to improve AI models, raising privacy and security questions.
GitHub updated its official actions/checkout to block pwn request attacks that exploit the pull_request_target trigger. The update, effective June 18, 2026, prevents malicious code from running with full workflow privileges. This move strengthens software supply chain security by closing a common attack vector.