Cybercriminals are abusing a widespread lack of authentication in the customer service platform Zendesk to flood targeted email inboxes with menacing messages that come from hundreds of Zendesk corporate customers …
Tag:
Security
Safety & Security
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS – Krebs on Security
by David Walker
The world’s largest and most disruptive botnet is now drawing a majority of its firepower from compromised Internet-of-Things (IoT) devices hosted on U.S. Internet providers like AT&T, Comcast and Verizon, …
Safety & Security
ShinyHunters Wage Broad Corporate Extortion Spree – Krebs on Security
by David Walker
A cybercriminal group that used voice phishing attacks to siphon more than a billion records from Salesforce customers earlier this year has launched a website that threatens to publish data …
“We’re hiring selectively for AI and machine learning expertise, but we’re also investing in our existing talent — training them to understand how AI works, how to validate models, and …
Safety & Security
18 Popular Code Packages Hacked, Rigged to Steal Crypto – Krebs on Security
by David Walker
At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved in …
Signs can say a lot. You can probably spot many top security company signs without realizing it. Convicted burglars have confessed that security signs (among other things) are effective at …
Safety & Security
Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms – Krebs on Security
by David Walker
U.S. prosecutors last week levied criminal hacking charges against 19-year-old U.K. national Thalha Jubair for allegedly being a core member of Scattered Spider, a prolific cybercrime group blamed for extorting …
Safety & Security
Two New Supermicro BMC Bugs Allow Malicious Firmware to Evade Root of Trust Security
by David Walker
Sep 23, 2025Ravie LakshmananFirmware Security / Vulnerability Cybersecurity researchers have disclosed details of two security vulnerabilities impacting Supermicro Baseboard Management Controller (BMC) firmware that could potentially allow attackers to bypass …
Safety & Security
Microsoft Patch Tuesday, September 2025 Edition – Krebs on Security
by David Walker
Microsoft Corp. today issued security updates to fix more than 80 vulnerabilities in its Windows operating systems and software. There are no known “zero-day” or actively exploited vulnerabilities in this …
Safety & Security
Self-Replicating Worm Hits 180+ Software Packages – Krebs on Security
by David Walker
At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and publishes those secrets on GitHub, …