Cybersecurity researchers have identified six critical vulnerabilities in the Ollama AI framework that could be exploited for denial-of-service attacks, model poisoning, and model theft through a single HTTP request.
Security researchers at Checkmarx have discovered a new npm supply chain attack that utilizes a typosquatting technique with a malicious package named “jest-fet-mock,” which targets development environments and employs Ethereum smart contracts for command-and-control communication.
Okta has resolved a significant authentication bypass vulnerability that allowed unauthorized access to user accounts with long usernames, highlighting the need for robust security measures in authentication services.
A ransomware attack by the Rhysida group compromised the personal and financial data of approximately 500,000 residents and city employees in Columbus, Ohio, raising significant concerns about municipal cybersecurity vulnerabilities.
The pro-Russian hacking group NoName057(16) has claimed responsibility for a series of DDoS attacks on multiple local government authorities in the UK, motivated by the country’s military support for Ukraine.
US intelligence agencies have linked a viral video falsely claiming voter fraud in Georgia to a Russian disinformation effort aimed at undermining confidence in the upcoming presidential election.
