SecurityWeek

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

A PowerShell script included in patch files appears to be triggering false positives by multiple security engines.
Pen Test Partners

ClickFix, CrashFix and the growing family of copy and paste attacks

TL;DR Introduction At the start of this year, I wrote a blog on how 2025 was the ‘year of the infostealer’, and it doesn’t ...
Analytics Insight

Massive Oracle PeopleSoft Hack: Hackers Claim 300 Instances Compromised Across Universities

An increasing number of data theft breaches that target Oracle PeopleSoft servers at over 100 organizations, mostly ...

Hackers say they breached Oracle PeopleSoft systems used by more than 100 firms

The cybercrime group ShinyHunters has claimed responsibility for a wave of data theft attacks targeting Oracle PeopleSoft ...

Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks

Oracle PeopleSoft servers are being targeted in ongoing data theft attacks by the ShinyHunters extortion gang, which claims to have stolen data from over 100 organizations.
The Hacker News

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

Attackers hijacked 400+ Arch Linux AUR packages to run a Rust credential stealer, with optional eBPF rootkit support on root ...

French govt messaging service breached in account hijacking attack

DINUM, the digital affairs directorate of the French government, warned that hackers used a hijacked user account to breach ...
InfoWorld

Meet Hades: The malware that lies to AI security agents

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

YouTuber PewDiePie Launches Free AI That Runs Privately On Your PC, Taking on Claude and ChatGPT

PewDiePie has released Odysseus, a free and open-source AI workspace that runs on a user’s own computer. The project is not a ...
Infosecurity Magazine

Cybercriminals Use Fake AI Guides and Dev Tools to Spread AsyncRAT Malware

The two files posing as Realtek components are really copies of AutoHotkey, a legitimate automation tool repurposed as an ...

Microsoft patches a record 206 flaws—and one is already being exploited

Yesterday, on Patch Tuesday for June, Microsoft released security updates to address 206 vulnerabilities. This is a new ...
The Next Web

Why the next AI safety problem is the conversation between models

Once an AI agent has tools and access to a real execution environment, it should be treated as an untrusted process. Bar Mazuz, a former Unit 8200 cyber researcher, explains why securing ...