Microsoft

Active attack: Dirty Frag Linux vulnerability expands post-compromise risk

Dirty Frag is a newly disclosed Linux local privilege escalation vulnerability affecting kernel networking and ...
Microsoft

When prompts become shells: RCE vulnerabilities in AI agent frameworks

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

Canvas login portals hacked in mass ShinyHunters extortion campaign

The ShinyHunters extortion gang has breached education technology giant Instructure again, this time exploiting another ...

White House distances itself from tighter AI regulation

The White House is looking for “partnership” with companies rather than pursuing “government regulation,” a senior White ...
American Hospital Association

Microsoft warns of sophisticated phishing campaign heavily targeting health care organizations

Microsoft Threat Intelligence is warning of a large scale, multistage phishing campaign that disproportionately targeted the health care sector, sending “code of conduct” themed emails to lure users ...

CISA gives feds four days to patch Ivanti flaw exploited as zero-day

CISA has given U.S. federal agencies four days to secure their networks against a high-severity vulnerability in Ivanti ...
PCMag Australia

While You Manage 120 Passwords, AI Is Deleting Databases and Governments Are Blocking the Web

This week in cybersecurity news, the internet's three-way problem—password fatigue, unreliable AI tools, and expanding ...