The threat actor infected victims with the Snow malware family – Snowbelt, Snowglaze, and Snowbasin – for persistent access.
The post UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware appeared first on SecurityWeek.
Source:: securityweek
The company released 481 new security patches across 28 product families, including over 300 fixes for remotely exploitable, unauthenticated flaws.
The post Oracle Patches 450 Vulnerabilities With April 2026 CPU appeared first on SecurityWeek.
Source:: securityweek
By algerj@bnpmedia.com (Jordyn Alger)
OpenAI has launched GPT-5.4-Cyber, a model optimized for defensive cybersecurity usage.
Source:: Security magazin
How CSOs can win board support for gunshot detection technology.
Source:: Security magazin
By algerj@bnpmedia.com (Jordyn Alger)
McGraw Hill announced a data breach connected to a Salesforce misconfiguration.
Source:: Security magazin
The company will use the investment to accelerate product development and grow go-to-market efforts.
The post Cloudsmith Raises $72 Million in Series C Funding appeared first on SecurityWeek.
Source:: securityweek
By algerj@bnpmedia.com (Jordyn Alger)
Anthropic’s new AI model may have been accessed by unauthorized users.
Source:: Security magazin
ADT discovered unauthorized access of customer and prospective customer information.
Source:: Security magazin
Palo Alto Networks has developed Zealot, a multi-agent penetration testing PoC capable of reconnaissance, exploitation, and exfiltration.
The post AI Can Autonomously Hack Cloud Systems With Minimal Oversight: Researchers appeared first on SecurityWeek.
Source:: securityweek