Aggregator

Workday Breached as Ransomware Group Seeks Salesforce Data

Ransomware DataBreachToday.com
6 days 12 hours ago
CRM Breach May Be Tied to Ongoing Scattered Spider and ShinyHunters Campaign
Cloud software giant Workday said its customer relationship management software has been breached and customer data stolen. The alert comes as attackers continue to pose as employees to trick help desks into giving them direct access to a victim's Salesforce CRM instance.

Intel Websites Exploited to Hack Every Intel Employee and View Confidential Data

Cyber Security News
6 days 13 hours ago

A series of critical vulnerabilities across multiple internal Intel websites allowed for the complete exfiltration of the company’s global employee database and access to confidential supplier information. The flaws, stemming from basic security oversights, exposed the personal details of over 270,000 Intel employees and workers. The investigation from Eaton Works revealed that at least four […]

The post Intel Websites Exploited to Hack Every Intel Employee and View Confidential Data appeared first on Cyber Security News.

Guru Baran

科学家提议拦截星际彗星 3I/ATLAS

Solidot
6 days 13 hours ago
天文学家上个月报告发现了已知第三颗星际天体,前两颗分别是 'Oumuamua、彗星 2I/Borisov,第三颗 3I/ATLAS 也是星际彗星。哈佛大学天文学家提议使用现有的 NASA 探测器与这颗彗星会合,一探这颗神秘星际天体的面貌。根据他们的分析,NASA 朱诺号(Juno)探测器能于 2026 年 3 月 16 日在 3I/ATLAS 近距离飞过木星时对其进行拦截。

CVE-2025-9119 | Netis WF2419 1.2.29433 Wireless Settings Page /index.htm SSID cross site scripting (EUVD-2025-25152)

VulDB Recent Entries
6 days 13 hours ago
A vulnerability identified as problematic has been detected in Netis WF2419 1.2.29433. This vulnerability affects unknown code of the file /index.htm of the component Wireless Settings Page. This manipulation of the argument SSID with the input <img/src/onerror=prompt(8)> causes cross site scripting. This vulnerability is registered as CVE-2025-9119. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

Workday Latest Company Hit by Third-Party CRM Platform Breach

Security Boulevard
6 days 13 hours ago

Workday, a high-profile HR and finance software solutions maker, is the latest victim of a string of data breaches orchestrated by the resurgent ShinyHunters threat group through Salesforce's CRM solution, joining a lineup of targets that includes Google, Qantas, Pandora, and Adidas.

The post Workday Latest Company Hit by Third-Party CRM Platform Breach appeared first on Security Boulevard.

Jeffrey Burt

The AI Memory Wars: Why One System Crushed the Competition (And It’s Not OpenAI)

Security Boulevard
6 days 13 hours ago

Most AI agents forget everything very soon. I benchmarked OpenAI Memory, LangMem, MemGPT, and Mem0 in real production environments. One system delivered 26% better accuracy and 91% faster performance. Here's which memory solution actually works for long-term AI agent deployments.

The post The AI Memory Wars: Why One System Crushed the Competition (And It’s Not OpenAI) appeared first on Security Boulevard.

Deepak Gupta - Tech Entrepreneur, Cybersecurity Author

Technical Details of SAP 0-Day Exploitation Script for RCE Revealed

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
6 days 13 hours ago

Cybersecurity researchers have unveiled the inner workings of an exploit script targeting a critical zero-day vulnerability in SAP NetWeaver’s Visual Composer Metadata Uploader, now designated as CVE-2025–31324. This flaw stems from a missing authorization check on the HTTP endpoint /developmentserver/metadatauploader, enabling unauthenticated file uploads that can lead to remote code execution (RCE) under the SAP […]

The post Technical Details of SAP 0-Day Exploitation Script for RCE Revealed appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Aman Mishra

Managed ad