Tag: security
Trump’s “One Big Beautiful Bill” set to award $1 billion funding to “offensive cyber operations”
Major new legislation commits over $1billion to US cyber offensives It’s not clear exactly what this refers to, but will most likely target China This comes after significant cuts to cybersecurity President Trump’s landmark ‘One Big Beautiful Bill’ legislation includes plans to commit $1billion over the next four years on…
Read More
DOGE employee leaks private xAI API key from sensitive database
A security researcher has uncovered a worrying API key leak The leak reportedly comes from DOGE staffer Marko Elez This is not the first security issue originating from DOGE A staffer with access to the personal data of millions of Americans has apparently leaked the API Key to at least…
Read More
US Army soldier pleads guilty to hacking telcos, extortion, wire fraud, identity theft
A former soldier has plead guilty to a number of charges These include fraud, identity theft, and conspiracy to hack organisations The soldier and his co-conspirators exfiltrated and sold data from companies The Department of Justice has announced that an ex-soldier has plead guilty to ‘conspiring to hack into telecommunications…
Read More
Faulty Shopify plugin puts hundreds of websites at risk of invasive attacks – find out how to stay safe
Consentik, a cookie consent & consent management app for Shopify, kept sensitive data in an open archive The archive was available for at least 100 days, if not more It included site analytics data, Shopify Personal Access Tokens, and Facebook Auth Tokens A major, reputable Shopify plugin, was leaking sensitive…
Read More
North Korean hackers release malware-ridden packages into npm registry
Security researchers spotted 67 malicious packages on npm The packages are part of the Contagious Interview campaign They are most likely deployed by North Korean attackers North Korean hackers have been seen pushing dozens of malicious packages to npm in an attempt to compromise western technology products through supply chain…
Read More
UK launches new Vulnerability Research Institute to protect critical infrastructure and UK business
VRI will complement NCSC’s current vulnerability research efforts It will be tasked with communicating NCSC’s needs with external experts The goal is to understand the flaws, patches, and research methodology The UK’s National Cyber Security Centre (NCSC) just announced the forming of The Vulnerability Research Initiative (VRI), a new program…
Read More