Security Bulletin

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

An attacker could have sent an email causing Copilot to leak info via a markdown image.

Interpol's Operation Secure arrested more than 30 suspects across Vietnam, Sri Lanka, and Nauru, and seized 117 command-and-control servers allegedly used to run widespread phishing, business email compromise, and other cyber scams.

The move is unrelated to a recent nation-state attack the vendor endured but stems from a report by a third-party researcher.

Let's recap the week so far with Security Weekly News; Obfuscated malware in NPM packages, tens of thousands of hacked IoT cameras. Find out what it all means for your digital survival.

Agentic AI was everywhere at Gartner's Security & Risk Management Summit in Washington, DC, this year, as the AI security product engine chugs ahead at full speed.

The open cameras may cause unauthorized access at data centers, break-ins at offices and retail stores, and privacy issues for home users and employees.

The weakness in Google's password-recovery page, discovered by a researcher called Brutecat, exposed private user contact information to attackers, opening the door to phishing, SIM-swapping, and other attacks.

The deal will combine Securonix's security information and event management (SIEM) platform with ThreatQuotient's threat detection and incident response (TDIR) offering to build an all-in-one security operations stack.

OpenAI bans ChatGPT accounts linked to threat actors in China, Russia, Iran and North Korea.

By combining behavioral analytics with adaptive training, security teams can take a more proactive stance.

Microsoft has unveiled a new European Security Programme aimed at bolstering cybersecurity for all 27 EU member states, EU candidates, the UK, and several neighboring countries, as digital threats escalate across the continent, reports Computer...