Security News - NetmanageIT CTO Corner

Security News

Breaking Cyber Security and Threat Intel News fresh off the wire!

ShinyHunters claim to be behind SSO-account data theft attacks

ShinyHunters claim to be behind SSO-account data theft attacks

BleepingComputer

Malicious AI extensions on VSCode Marketplace steal developer data

Malicious AI extensions on VSCode Marketplace steal developer data

BleepingComputer

CISA confirms active exploitation of four enterprise software bugs

CISA confirms active exploitation of four enterprise software bugs

BleepingComputer

US to deport Venezuelans who emptied bank ATMs using malware

US to deport Venezuelans who emptied bank ATMs using malware

BleepingComputer

Hackers exploit critical telnetd auth bypass flaw to get root

Hackers exploit critical telnetd auth bypass flaw to get root

BleepingComputer

CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities

CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities

What an AI-Written Honeypot Taught Us About Trusting Machines

What an AI-Written Honeypot Taught Us About Trusting Machines

BleepingComputer

Microsoft: Outlook for iOS crashes, freezes due to coding error

Microsoft: Outlook for iOS crashes, freezes due to coding error

BleepingComputer

Hackers get $1,047,000 for 76 zero-days at Pwn2Own Automotive 2026

Hackers get $1,047,000 for 76 zero-days at Pwn2Own Automotive 2026

BleepingComputer

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls

TikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive Order

TikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive Order

Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access

Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access

Fortinet confirms critical FortiCloud auth bypass not fully patched

Fortinet confirms critical FortiCloud auth bypass not fully patched

BleepingComputer

Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms

Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms

Okta SSO accounts targeted in vishing-based data theft attacks

Okta SSO accounts targeted in vishing-based data theft attacks

BleepingComputer

Curl ending bug bounty program after flood of AI slop reports

Curl ending bug bounty program after flood of AI slop reports

BleepingComputer

SmarterMail auth bypass flaw now exploited to hijack admin accounts

SmarterMail auth bypass flaw now exploited to hijack admin accounts

BleepingComputer

New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack

New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack

Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access

Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access

Microsoft Teams to add brand impersonation warnings to calls

BleepingComputer

INC ransomware opsec fail allowed data recovery for 12 US orgs

INC ransomware opsec fail allowed data recovery for 12 US orgs

BleepingComputer

Why Active Directory password resets are surging in hybrid work

Why Active Directory password resets are surging in hybrid work

BleepingComputer

ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories

ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories

Microsoft updates Notepad and Paint with more AI features

BleepingComputer

Hackers exploit 29 zero-days on second day of Pwn2Own Automotive

Hackers exploit 29 zero-days on second day of Pwn2Own Automotive

BleepingComputer