[ad_1] Ravie LakshmananMay 13, 2026Software Supply Chain / Data Exfiltration Cybersecurity researchers are calling attention to a new campaign dubbed GemStuffer that has targeted the RubyGems repository with more than …
GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data Read More
[ad_1] Google on Tuesday unveiled a new opt-in Android feature called Intrusion Logging for storing forensic logs to better analyze sophisticated spyware attacks. Intrusion Logging, available as part of Advanced …
Android Adds Intrusion Logging for Sophisticated Spyware Forensics Read More
[ad_1] For the first time in nearly two years, Microsoft’s monthly security update featured no actively exploited zero-day vulnerabilities or previously disclosed flaws. But that welcome reprieve aside, Microsoft’s May …
It’s Patch Tuesday for Microsoft and Not a Zero-Day In Sight Read More
[ad_1] Ravie LakshmananMay 12, 2026Vulnerability / Email Security Exim has released security updates to address a severe security issue affecting certain configurations that could enable memory corruption and potential code …
New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution Read More
[ad_1] Ravie LakshmananMay 12, 2026Supply Chain Attack / Software Security RubyGemsthe standard package manager for the Ruby programming language, has temporarily paused account sign ups following what has been described …
RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded Read More
[ad_1] Hugging Facean open source store for AI models and components, is open to an attack via the « tokenizer » layer that AI models use to make their outputs human readable. …
Hugging Face Packages Weaponized With a Single File Tweak Read More
[ad_1] Ravie LakshmananMay 12, 2026Malware / Mobile Security Cybersecurity researchers have flagged a new version of the TrickMo Android banking trojan that uses The Open Network (TON) for command-and-control (C2). …
New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots Read More
[ad_1] As part of Dark Reading’s 20th anniversary special coverage, we profile the CISOs, founders, researchers, criminals, and policymakers who rewrote the enterprise risk playbook. [ad_2] Source link
20 Leaders Who Built the CISO Era: 2 Decades of Change Read More
[ad_1] The Hacker NewsMay 12, 2026Threat Detection / AI Security Why do the Riskiest SOC Alerts Go Unanswered? Security operations teams are drowning in alerts. But the real problem isn’t …
Webinar: What the Riskiest SOC Alerts Go Unanswered Read More
[ad_1] Agentic AI is already running in production environments across many organizations today. It is executing tasks, consuming data, and taking actions — most likely without meaningful involvement from the …
Why Agentic AI Is Security’s Next Blind Spot Read More