Aggregator

DPRK worker scams are old hat, but they're still working, thanks to AI tools that help with everything from face swapping to daily emails.

Artificial intelligence models are rapidly evolving from simple coding assistants into highly capable, autonomous vulnerability researchers. Recently, Anthropic’s Claude Opus 4.6 demonstrated this by uncovering over 500 zero-day vulnerabilities in heavily scrutinized open-source projects. During a two-week collaborative engagement with Mozilla in February 2026, the AI model identified 22 unique security flaws within the Firefox […]

The post Claude AI Uncovers 22 Firefox Vulnerabilities in Two Weeks appeared first on Cyber Security News.

Спецслужбы нашли способ дотянуться до каждого телефона в осаждённой стране.

Linux rootkits have quietly grown into one of the most dangerous threats facing modern infrastructure. For years, attackers focused primarily on Windows-based systems, but the rise of Linux in cloud environments, container orchestration, IoT, and high-performance computing has shifted that calculus. Today, threat actors are engineering Linux rootkits that exploit cutting-edge kernel features, making them […]

The post Linux Rootkits Using Advanced eBPF and io_uring Techniques appeared first on Cyber Security News.

OpenAI is in and Anthropic is out as a supplier of AI technology for the US defense department. This news caps a week of bluster by the highest officials in the US government towards some of the wealthiest titans of the big tech industry, and the overhanging specter of the existential risks posed by a new technology powerful enough that the Pentagon claims it is essential to national security. At issue is Anthropic’s insistence that the US Department of Defense (DoD) could not use its models to facilitate “mass surveillance” or “fully autonomous weapons,” provisions the defense secretary Pete Hegseth ...

The post Anthropic and the Pentagon appeared first on Security Boulevard.

A detailed Auth0 vendor evaluation covering authentication, SSO, authorization, and CIAM capabilities. Learn about Auth0 pricing, scalability, strengths, risks, and how it compares with modern alternatives like SSOJet.

The post Auth0 Vendor Evaluation: Authentication, SSO, Access Management & CIAM Analysis (2026) appeared first on Security Boulevard.

OpenAI теряет корпоративный рынок из-за нового скандала.

A joint study by Google and GitGuardian reveals that over 2,600 valid TLS certificates, protecting Fortune 500 companies and government agencies, were compromised due to private key leaks on GitHub and DockerHub.

Threat actors are operationalizing AI to scale and sustain malicious activity, accelerating tradecraft and increasing risk for defenders, as illustrated by recent activity from North Korean groups such as Jasper Sleet and Coral Sleet (formerly Storm-1877).

The post AI as tradecraft: How threat actors operationalize AI appeared first on Microsoft Security Blog.

Microsoft is actively investigating a service disruption affecting multiple Microsoft 365 products for users in the North American region, with engineers pointing to Content Delivery Network (CDN) configuration issues as the likely root cause. The incident, tracked in the Microsoft 365 admin center, began on March 6, 2026, and remains under active investigation as of […]

The post Microsoft 365 Outage Hits North America as CDN Misconfiguration Disrupts Multiple Services appeared first on Cyber Security News.

Классические приёмы обмана обрели второе дыхание в руках профессионалов.

A vulnerability categorized as critical has been discovered in Ibexa & Ciril eZ Platform 2.x. Affected by this issue is some unknown functionality of the component REST API. Executing a manipulation can lead to improper access controls. The identification of this vulnerability is CVE-2025-70363. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in zarf-dev zarf up to 0.73.0. It has been rated as critical. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in path traversal. This vulnerability was named CVE-2026-29064. The attack needs to be approached locally. There is no available exploit. Upgrading the affected component is advised.

A vulnerability was found in Grokability Snipe-IT up to 8.3.6. It has been declared as critical. Affected is an unknown function of the component API Handler. Such manipulation leads to dynamically-determined object attributes. This vulnerability is uniquely identified as CVE-2025-15602. The attack can be launched remotely. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability was found in Mobiliti e-mobi.hu. It has been classified as critical. This impacts an unknown function. This manipulation causes insufficiently protected credentials. This vulnerability is handled as CVE-2026-27777. The attack can be initiated remotely. There is not any exploit available.

A vulnerability was found in Everon api.everon.io and classified as critical. This affects an unknown function. The manipulation results in insufficiently protected credentials. This vulnerability is known as CVE-2026-27027. It is possible to launch the attack remotely. No exploit is available.

A vulnerability has been found in CoreDNS up to 1.14.1 and classified as problematic. The impacted element is an unknown function of the component Loop Detection Plugin. The manipulation leads to predictable seed in pseudo-random number generator (prng). This vulnerability is traded as CVE-2026-26018. It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability, which was classified as problematic, was found in CoreDNS up to 1.14.1. The affected element is an unknown function of the component Security Plugin Handler. Executing a manipulation can lead to time-of-check time-of-use. This vulnerability appears as CVE-2026-26017. The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Mobiliti e-mobi.hu. Impacted is an unknown function of the component WebSocket Backend. Performing a manipulation results in session expiration. This vulnerability is reported as CVE-2026-27764. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability classified as critical was found in Everon api.everon.io. This issue affects some unknown processing of the component WebSocket Backend. Such manipulation leads to session expiration. This vulnerability is documented as CVE-2026-20748. The attack can be executed remotely. There is not any exploit available.