A significant cybersecurity breach at the US Treasury Department, attributed to a Chinese state-sponsored APT group, involved the exploitation of vulnerabilities in a cloud service, leading to unauthorized access to sensitive information.
The UK government, led by Prime Minister Keir Starmer, is set to criminalize the creation and sharing of sexually explicit deepfake images as part of a broader strategy to combat online abuse, particularly affecting women and girls.
Moxa has identified critical vulnerabilities in its industrial networking devices, including hard-coded credentials and OS command injection issues, requiring immediate action from users to mitigate potential security risks.
PhishWP is a dangerous WordPress plugin that enables cybercriminals to design counterfeit payment interfaces, primarily targeting sensitive financial information from unsuspecting users.
Security researchers have identified multiple attack scenarios targeting MLOps platforms like Azure Machine Learning, BigML, and Google Cloud Vertex AI, highlighting vulnerabilities such as device code phishing, exposed API keys, and data extraction risks.
Cybercriminals are exploiting unsolicited messages on platforms like Discord and email to distribute malware disguised as game beta tests, threatening users’ sensitive information.
