Cybersecurity - Espresso (Page 2)

Cybersecurity

AI Agents Own Networks in 30s: Market Down 9.3% as Supply Chain Burns

TL;DR * 9.3% Market Crash: AI Agents Own Networks in 30 Seconds, Supply Chain is a Burning Dumpster Fire. Your network is already owned—how fast can your SOC react? * Kali365: The Phishing-as-a-Service That Makes MFA Look Like a Joke. Is your MFA actually protecting anything, or is it

Cybersecurity

633+ Packages Hijacked: Global Developer Registry Breach Targets AI Configs and Cloud Credentials

TL;DR * 633+ Packages Hijacked: Global Developer Ecosystem Hit by 'TrapDoor' Multi-Registry Credential Vacuum. Are your npm, PyPI, and Crates.io dependencies currently leaking your OIDC tokens and SSH keys? * 21,270 ETH Unstaked: Ethereum Foundation Pivots to CROPS Amid Leadership Exodus and 50% Price Crash. Is the

Cybersecurity

179 Factories Exposed: US Tops Global Naked-PLC Leaderboard

TL;DR * Global ICS Exposure Rises as 179 Industrial Control Systems Found Exposed on Modbus Port 502, U.S. Leads with 57 Devices * Cybercriminals exploit emoji patterns to evade keyword-based detection systems, Flashpoint reports * NHS Scotland website defaced with illegal content; no patient data breached, cybersecurity team responds 🔥 179 Modbus

Cybersecurity

5M Linux Servers Hacked via One Print Job: Fortune 500 Port 631 Exposed

TL;DR * APT28 (Forest Blizzard) scales DNS hijacking campaign, compromising 200+ organizations via TP-Link routers to enable AITM attacks * Chaos malware evolves with SOCKS proxy capability, targeting misconfigured Hadoop deployments and Linux cloud servers in new 64-bit ELF variant * CUPS 2.4.16 and older versions vulnerable to unauthenticated root

Cybersecurity

€1.44 B Vanishes: 1.2 M French Accounts Looted via Weak API

TL;DR * French Banking Breach Exposes 1.2M Records with IBANs, SSNs, and Tax IDs, Data Sold on Dark Web via FICOBA Registry * UnitedHealth Pays $22M Ransom After BlackCat Breach Exposes 192.7M Patient Records, Causing $2.9B in Damages 💥 1.2 M French Accounts Leaked: €1.44 B Fraud

Cybersecurity

78 % Exchange 0-Day Rampage in 12 h: Hospitals Piñata’d, 9-Day Patch Lag Leaves SMBs Hand-Painting Invoices

TL;DR * Storm-1175 Exploits 16+ CVEs Including CVE-2026-23760 Zero-Day to Deploy Medusa Ransomware Across Healthcare and Finance Sectors * Drift Protocol Suffers $285M Exploit via North Korean UNC4736, Leveraging Social Engineering and Multi-Sig Bypass * Qilin Ransomware Group Uses BYOVD Technique to Disable 300+ EDR Solutions via Malicious DLL msimg32.dll 😈 78%

Cybersecurity

💥 Claude Code Leak: 512k Lines Weaponised, 10k US Dev Rigs Now Proxy Zombies

TL;DR * Claude Code source code leaked, triggering trojanized repos with Vidar and GhostSocks infostealers targeting 10,000+ downloads * Microsoft integrates Sysmon into Windows 11 with AI-powered threat detection * Russia's internet blocking attempts trigger nationwide banking failure, disrupting payments and Telegram services 💥 Claude Code Leak: 512k Lines Weaponised,

Cybersecurity

😱 4-TB Heist in 3 Hours: Mercor AI Supply-Chain Pillaged via Poisoned LiteLLM

TL;DR * Mercor AI Breached via Poisoned Python Package, Exposing 211GB of Candidate Data * NoVice malware infects 2.3M Android devices via 50+ Google Play apps, persists after factory reset via kernel and Mali GPU exploits * HasBro Discloses Cybersecurity Incident, SEC Files 8-K Amid Ongoing Forensic Investigation 😱 4-TB Heist in

Cybersecurity

India Yanks 45M Chinese Cams: Spyware Piñatas Banned, Price +20%

80% of India’s CCTV cams were CCP spyware piñatas—now banned overnight! 🎉 45M Hikvision/Dahua units yanked like bad teeth; price tag +20% but 68% fewer 9.8-CVSS ‘oopsies’. India yanked 45 million Hikvision & Dahua boxes off Flipkart faster than you can say “CVE-2017-7921,” and the only thing

Cybersecurity

IRGC Tags 18 Tech Giants: $45M AWS Blaze Opens Kinetic Cloud War

TL;DR * IRGC names 18 US tech firms as legitimate targets amid escalating Middle East cyber conflict * GitHub Copilot evolves into agentic workflow participant, sparking backlash over unauthorized product copy insertion in pull requests * Qilin ransomware claims breach of Dow Inc., a global chemical manufacturer, with no public proof yet

Cybersecurity

100k Firms Rekt by One AI .url: EDR Blind, WMI Undead

TL;DR * DeepLoad AI-powered malware loader evades detection via 100,000+ lines of obfuscated code, steals credentials via Windows lock screen processes * Fortinet FortiClient EMS CVE-2026-21643 exploited in the wild, allowing unauthenticated RCE on nearly 1,000 exposed instances * New Zealand government launches national cybersecurity framework after 120,000-patient health

Cybersecurity

1M Israelis’ Phones Raided by IRGC via Fake Bomb-Shelter App: 12 TB Looted

TL;DR * Iran-linked spyware campaign targets Israeli civilians via fake bomb shelter app, exploiting Android devices * AI-assisted malware development reaches operational maturity with VoidLink framework, exploiting agent-based code generation * Gemini 2.5 Flash achieves 100% interception rate in multi-turn jailbreak defense tests using Precepts-Samadhi-Teacher-Wisdom architecture 🫠 1M Israeli Phones Backdoored by