AI helps novice threat actor compromise FortiGate devices in dozens of countries

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized ...
CSO Online

Russian group uses AI to exploit weakly-protected Fortinet firewalls, says Amazon

The report warns CSOs that while AI is helping unsophisticated threat actors, failure to implement cybersecurity basics is fatal regardless of the attacker's skill.
CoinDesk

How AI is helping retail traders exploit prediction market 'glitches' to make easy money

A fully automated bot quietly captured micro-arbitrage opportunities on short-term crypto prediction markets, netting nearly ...
Dark Reading

Supply Chain Attack Secretly Installs OpenClaw for Cline Users

The malicious version of Cline's npm package — 2.3.0 — was downloaded more than 4,000 times before it was removed.

Practical DevSecOps Launches Security Champions Certification to Address 3.5 Mill.-Person Cybersecurity Talent Shortage

Practical DevSecOps launches the Certified Security Champion course to help orgs bridge the talent gap by upskilling ...

CIA makes new push to recruit Chinese military officers as informants

The US spy agency on Thursday rolled out the video depicting a disillusioned mid-level Chinese military officer, in the ...

Digital influence: How Al-Qaeda’s online networks are shaping Bangladesh’s mainstream

Rupantar study reveals Bangladesh’s online extremist network, led by AQIS, has expanded into mainstream social media, ...
Security Boulevard

Hackers Use LLM to Create React2Shell Malware, the Latest Example of AI-Generated Threat

Darktrace researchers say hackers used AI and LLMs to create malware to exploit the React2Shell vulnerability to mine ...
HealthcareInfoSecurity

AI-Generated Malware Exploits React2Shell for Tiny Profit

Security researchers detected artificial intelligence-generated malware exploiting the React2Shell vulnerability, allowing ...
CoinTelegraph

Saga pauses chainlet after $7M exploit that depegged its stablecoin

Saga’s US dollar-pegged stablecoin has dropped to $0.75, while the protocol's total value locked has fallen by around 55% over the past 24 hours. Layer-1 blockchain protocol Saga has paused its ...
Ars Technica

A single click mounted a covert, multistage attack against Copilot

Microsoft has fixed a vulnerability in its Copilot AI assistant that allowed hackers to pluck a host of sensitive user data with a single click on a legitimate URL. The hackers in this case were white ...
Bleeping Computer

Exploit code public for critical FortiSIEM command injection flaw

Technical details and a public exploit have been published for a critical vulnerability affecting Fortinet's Security Information and Event Management (SIEM) solution that could be leveraged by a ...