1. The US Congressional Budget Office confirmed unauthorized ac…
The US Congressional Budget Office confirmed unauthorized access to its networks in a suspected foreign cyberattack potentially exposing emails with congressional offices.
Category: Newsletter
2. A significant data leak from Chinese cybersecurity firm Know…
A significant data leak from Chinese cybersecurity firm Knownsec exposed cyber weapon specifications, proprietary hacking tool source code, government collaboration details, and a list of 80 compromised overseas surveillance targets.
Category: Newsletter
3. A detailed demonstration shows how an ARM-based IoT device’s…
A detailed demonstration shows how an ARM-based IoT device’s Address Space Layout Randomization (ASLR) can be bypassed using Return-Oriented Programming (ROP), enabling unauthenticated remote code execution via memory manipulation.
Category: Newsletter
4. The article advocates for redesigning systems in which AI en…
The article advocates for redesigning systems in which AI enhances meaningful signals instead of obscuring them, improving overall user experience and information delivery.
Category: Newsletter
5. Qilin ransomware group exfiltrated 300GB of data from Corner…
Qilin ransomware group exfiltrated 300GB of data from Cornerstone Staffing Solutions, including 120,000 resumes, Social Security numbers, salary data, and financial records, with threats of sophisticated phishing campaigns.
Category: Newsletter
6. EchoGram exploits gaps in training data guardrails by inject…
EchoGram exploits gaps in training data guardrails by injecting nonsensical “flip tokens” that cause false positives and bypasses in GPT-5.1, Claude, and Gemini, posing a dual threat of alert fatigue and actual malicious prompt bypasses.
Category: Newsletter
7. The RondoDox botnet leverages a vulnerability in the XWiki S…
The RondoDox botnet leverages a vulnerability in the XWiki SolrSearch endpoint, sending base64-encoded Groovy payloads via HTTP GET requests to download and execute malware. Existing IOC blocklists remain effective against this threat.
Category: Newsletter
8. Checkmarx Zero identified and removed the malicious “prettie…
Checkmarx Zero identified and removed the malicious “prettier-vscode-plus” VSCode extension within 4 hours, limiting its impact to a few installs; it used advanced techniques to steal Windows credentials and WhatsApp chats.
Category: Newsletter
9. Several major US banks are investigating data theft followin…
Several major US banks are investigating data theft following a cyberattack on SitusAMC, a financial tech firm, which exposed corporate and accounting records without deploying malware.
Category: Newsletter
10. A critical memory vulnerability in Firefox’s WebAssembly eng…
A critical memory vulnerability in Firefox’s WebAssembly engine allowed remote code execution risks for six months; users should update to Firefox version 145 or ESR 140.5 immediately to mitigate risk.
Category: Newsletter
11. NCC Group conducted a thorough security assessment of Google…
NCC Group conducted a thorough security assessment of Google’s Private AI Compute system, covering architecture, cryptography, and source code, providing valuable insights for privacy-preserving cloud AI architectures.
Category: Newsletter
12. State actors exploited AI jailbreaking techniques against Cl…
State actors exploited AI jailbreaking techniques against Claude Code with high success, highlighting semantic attack vectors that bypass traditional security tools and necessitate advanced context-aware defenses.
Category: Newsletter
13. Users and organizations have exposed sensitive credentials b…
Users and organizations have exposed sensitive credentials by pasting them into public online code formatting tools, creating significant security risks and widespread discovery of secrets by attackers.
Category: Newsletter
14. Traditional automation methods have failed to alleviate SOC …
Traditional automation methods have failed to alleviate SOC team burdens; Mate Security offers a knowledge-driven approach integrating company and industry insights with AI to improve security operations.
Category: Newsletter
15. Santamon is an experimental macOS tool that locally evaluate…
Santamon is an experimental macOS tool that locally evaluates Endpoint Security telemetry using CEL rules and forwards only detections, enhancing privacy and sensor capabilities without additional Apple entitlements.
Category: Newsletter