AI/ML3-line exploit revealed for critical NVIDIA Container Toolkit flawLaura FrenchJuly 18, 2025The flaw risks exposure of sensitive AI data and models in multi-tenant environments.
Critical Infrastructure SecurityHow did Stuxnet impact cyber operations? The US House aims to find outSteve ZurierJuly 18, 2025Hearing may offer insights into what offensive cyber operations might look like.
IdentityPhishing attack abuses QR codes to bypass FIDO keysLaura FrenchJuly 17, 2025A man-in-the-middle attack relays a cross-device sign-in mechanism via a fake login site.
IdentityCisco patches 10.0 vulnerability in ISE, its second in three weeksSteve ZurierJuly 17, 2025Security pros express concern over a trusted system like Cisco ISE showing continued vulnerabilities.
Application securityAI streamlining attacks on the application layer, researchers sayShaun NicholsJuly 17, 2025Threat actors are thriving with attacks against developers on the application layer and upstream in the supply chain
MalwareMicrosoft Teams phishing spreads updated Matanbuchus malware loaderLaura FrenchJuly 16, 2025Matanbuchus 3.0 adds greater stealth and execution capabilities, and could lead to ransomware.
Network SecurityChina-linked Salt Typhoon infiltrated state National Guard networkSteve ZurierJuly 16, 2025Security officials touted victory over a second China-linked group on critical infrastructure networks.
DevOps67 malicious npm packages, novel loader spread North Korean malwareLaura FrenchJuly 15, 2025Packages that load BeaverTail malware were downloaded more than 17,000 times.
IdentityStolen identities a fear after Episource breach affects 5.4M patientsSteve ZurierJuly 15, 2025In letter to customers, Episource said that the sensitive healthcare data potentially stolen.
AI/MLRowhammer attacks spread to Nvidia GPUs with attacks on GDDR6 memoryShaun NicholsJuly 14, 2025University of Toronto researchers demonstrated Rowhammer attack on Nvidia A6000 GPUs.
