Tag: security
DeepMind’s latest AI tool wants to detect and repair software vulnerabilities before they get attacked
CodeMender automatically generates AI-reviewed security patches for open source projects Google DeepMind says CodeMender reduces vulnerability workloads through code validation DeepMind plans wider developer release once CodeMender’s reliability is confirmed Google DeepMind has revealed CodeMender, an artificial intelligence agent it says can automatically detect and fix software vulnerabilities before they…
Read More
Hackers claim to have stolen over a billion Salesforce records – and are demanding nearly $1 billion not to leak them
Scattered Lapsus$ Hunters launch data leak site to pressure victims into ransom negotiations Attackers exploited Salesloft’s Drift app to access Salesforce customer data, not Salesforce itself Victims include Cloudflare, Zscaler, Tenable; Salesforce denies platform compromise or active vulnerabilities Scattered Lapsus$ Hunters, a team-up of infamous hacking groups Scattered Spider, Lapsus$,…
Read More
Oracle forced to rush out patch for zero-day exploited in attacks
Oracle patched a critical zero-day RCE flaw in E-Business Suite, actively exploited by ransomware actors Attackers used compromised email accounts to extort victims; FIN11 and Cl0p may be involved CVE-2025-61882 scored 9.8/10; exploitation requires no authentication and enables full system takeover Oracle has released a patch to address a zero-day…
Read More
Microsoft Outlook will no longer show inline SVG images regularly exploited in phishing attacks
Outlook stops showing inline SVG images to limit phishing and malware risks Microsoft continues retiring risky features across Office and Windows platforms for protection Company balances user impact with security, ensuring SVG attachments remain fully supported Malicious use of SVG files has become more and more common in recent years,…
Read More
Phishing emails are now so good the majority of people believe they are written by humans or are unsure – and that can’t be good news
Yubico study finds nearly half of respondents interacted with phishing emails in the past year Gen Z emerges as the most vulnerable demographic to phishing attacks Passwords remain dominant despite low confidence in their actual security strength Phishing emails have advanced to the point where many people can no longer…
Read More
Cybercriminals tried to bribe a BBC journalist to hack into one of the world’s biggest news websites – here’s what happened next
BBC journalist was targeted by hackers offering ransom profits The gang introduced themselves with links to darknet addresses and forums MFA bombing transformed online negotiations into an invasive and unsettling confrontation The concept of an insider threat within cybersecurity is often discussed in abstract terms, a theoretical vulnerability that organizations…
Read More