Tag Archives: Biz & IT

PeopleSoft 0-day affecting hundreds of organizations steals gigabytes of data

“While several organizations successfully blocked the activity or remediated the vulnerabilities, others experienced compromise, resulting in stolen data being published on the ShinyHunters DLS,” Mandiant said. (DLS is short for data leak site.) An analysis of a bash script left in the staging environment shows the attackers performed reconnaissance on compromised organizations, including mapping the… Read More: PeopleSoft 0-day affecting hundreds of organizations steals gigabytes of data »

Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed

Tuesday’s patch bundle also fixed MiniPlasma, a separate vulnerability disclosed by Nightmare Eclipse. Microsoft said in an email that the vulnerability is tracked as CVE-2020-17103, a vulnerability Microsoft first fixed six years ago. That means MiniPlasma was the result of a regression or an incomplete patch in its initial form. The company is in the… Read More: Locked in heated rivalry with researcher, Microsoft fixes 0-day they… »

High-severity vulnerability in Linux caused by a single errant character

When a verdict map is deleted from memory, catchall elements are deactivated and a chain’s reference counter is decremented. When errors occur the deletion can be reversed and the counter incremented. CVE-2026-53111 allows for that process to be altered. As a result, the exploit can decrement the variable an arbitrary number of times and then… Read More: High-severity vulnerability in Linux caused by a single errant character »

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI coding agents. In all, multiple researchers said, 73 packages were flagged as malicious when automated systems on GitHub blocked them on the platform. Rather than noting they… Read More: For the 2nd time in weeks, Microsoft packages laced with… »

How a USB-connected speaker can infect a PC without ever being touched

After successfully replacing the firmware with a replacement image that did nothing more than display the word “patched” on the speaker’s LED display, the researcher got to wondering what else a hacker might do. So he turned his attention to FreeRTOS, the open source operating system that ran the Katana V2X. It contained a set… Read More: How a USB-connected speaker can infect a PC without ever… »

Dashlane explains how attackers managed to download encrypted password vaults

That means the chances of the attackers decrypting one of the encrypted vaults they obtained is very small in the event the master password was strong, meaning long, randomly generated, and has high entropy. However, not everyone uses such master passwords. In the event the master password was included in word lists exchanged by password… Read More: Dashlane explains how attackers managed to download encrypted password vaults »

Can’t make sense of Dashlane’s vault theft notification? You’re not alone.

There’s a lot that doesn’t add up in a security advisory password manager Dashlane published Monday, warning that attackers managed to obtain 20 encrypted user vaults. “Starting on Sunday, May 31, 2026, an external party launched a brute force attack against certain Dashlane user accounts,” the company said. “The goal of the attack was to… Read More: Can’t make sense of Dashlane’s vault theft notification? You’re not… »

Dozens of Red Hat packages backdoored through its official NPM channel

The worm, dubbed Shai-Hulud, has all the hallmarks of malware released last month as freely available open source. TeamPCP was the first group to use Shai-Hulud, and it promoted a competition that promised a $1,000 payment to the hacker who carried out the biggest supply-chain attack using the malware. TeamPCP has also been behind a… Read More: Dozens of Red Hat packages backdoored through its official NPM… »

Botnet of more than 17 million devices dismantled

Authorities in the Netherlands said they dismantled a botnet that comprised more than 17 million devices and were managed by 200 servers in a joint operation by the police and the National Cyber Security Center. The action, announced Thursday, came about after a security researcher reported the sprawling network to authorities. The host infrastructure was… Read More: Botnet of more than 17 million devices dismantled »

Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code

In response, Link updated the 1.10.0 release notes to disclose the verbatim prompt injection in its entirety. The section now reads: This project is not meant to be used by any “AI” coding agents at all. In order to discourage agents from using jqwik there is a change to what jqwik emits at runtime. Each… Read More: Fed up with vibe coders, dev sneaks data-nuking prompt injection… »