Category: Uncategorized

  • Browser Extensions Are the New AI Consumption Channel That No One Is Talking About

    Browser Extensions Are the New AI Consumption Channel That No One Is Talking About

    While much of the discussion on AI security centers around protecting ‘shadow’ AI and GenAI consumption, there’s a wide-open window nobody’s guarding: AI browser extensions. 
    A new report from LayerX exposes just how deep this blind spot goes, and why AI extensions may be the most dangerous AI threat surface in your network that isn’t on anyone’s 
  • Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows

    Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows

    Google has made Device Bound Session Credentials (DBSC) generally available to all Windows users of its Chrome web browser, months after it began testing the security feature in open beta.
    The public availability is currently limited to Windows users on Chrome 146, with macOS expansion planned in an upcoming Chrome release.
    “This project represents a significant
  • Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

    Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

    Unknown threat actors have hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla to push a poisoned version containing a backdoor.
    The incident impacts Smart Slider 3 Pro version 3.5.1.35 for WordPress, per WordPress security company Patchstack. Smart Slider 3 is a popular WordPress slider plugin with more than 800,000 active installations across its free and Pro 
  • EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

    EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

    Details have emerged about a now-patched security vulnerability in a widely used third-party Android software development kit (SDK) called EngageLab SDK that could have put millions of cryptocurrency wallet users at risk.
    “This flaw allows apps on the same device to bypass Android security sandbox and gain unauthorized access to private data,” the Microsoft Defender
  • UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns

    UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns

    A previously undocumented threat cluster dubbed UAT-10362 has been attributed to spear-phishing campaigns targeting Taiwanese non-governmental organizations (NGOs) and suspected universities to deploy a new Lua-based malware called LucidRook.
    “LucidRook is a sophisticated stager that embeds a Lua interpreter and Rust-compiled libraries within a dynamic-link library (DLL) to download and
  • ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

    ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

    Thursday. Another week, another batch of things that probably should’ve been caught sooner but weren’t.
    This one’s got some range — old vulnerabilities getting new life, a few “why was that even possible” moments, attackers leaning on platforms and tools you’d normally trust without thinking twice. Quiet escalations more than loud zero-days, but the kind that matter more in
  • The Hidden Security Risks of Shadow AI in Enterprises

    The Hidden Security Risks of Shadow AI in Enterprises

    As AI tools become more accessible, employees are adopting them without formal approval from IT and security teams. While these tools may boost productivity, automate tasks, or fill gaps in existing workflows, they also operate outside the visibility of security teams, bypassing controls and creating new blind spots in what is known as shadow AI. While similar to the phenomenon of
  • Oregon Journalism Project: Oregon’s gas prices are fifth highest in the nation

    Oregon Journalism Project: Oregon’s gas prices are fifth highest in the nation

    Free news: This story was produced by the Oregon Journalism Project, a nonprofit investigative newsroom for the state of Oregon.
  • New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

    New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

    Cybersecurity researchers have flagged a new variant ofmalware called Chaosthat’scapable of hitting misconfigured cloud deployments, marking an expansion of the botnet’s targeting infrastructure.
    “Chaos malware is increasingly targeting misconfigured cloud deployments, expanding beyond its traditional focus on routers and edge devices,” Darktrace said in a new report.
  • Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices

    Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices

    Cybersecurity researchers have lifted the curtain on a stealthy botnet that’s designed for distributed denial-of-service (DDoS) attacks.
    Called Masjesu, the botnet has been advertised via Telegram as a DDoS-for-hire service since it first surfaced in 2023. It’s capable of targeting a wide range of IoT devices, such as routers and gateways, spanning multiple architectures.
    “Built for