Chinese-sponsored groups are using the popular Brickstorm backdoor to access and gain persistence in government and tech firm networks, part of the ongoing effort by the PRC to establish long-term footholds in agency and critical infrastructure IT environments, according to a report by U.S. and Canadian security offices.

The post China Hackers Using Brickstorm Backdoor to Target Government, IT Entities appeared first on Security Boulevard.

ShadyPanda spent seven years uploading trusted Chrome and Edge extensions, later weaponizing them for tracking, hijacking, and remote code execution. Learn how the campaign unfolded.

The post ShadyPanda Takes its Time to Weaponize Legitimate Extensions  appeared first on Security Boulevard.

Hackers stole the names, addresses, Social Security numbers, and financial and medical information of 9,542 people.

The post Inotiv Says Personal Information Stolen in Ransomware Attack appeared first on SecurityWeek.

Freedom Mobile says hackers stole customers’ personal information from its account management platform.

The post Personal Information Compromised in Freedom Mobile Data Breach appeared first on SecurityWeek.

The compromised personal and financial information includes names, addresses, Social Security numbers, and card numbers.

The post Marquis Data Breach Impacts Over 780,000 People appeared first on SecurityWeek.

AI browsers introduce reasoning-based risks. Learn how cross-origin AI agents dismantle web security and what defenses are needed.

The post Convenience or Catastrophe? The Dangers of AI Browsers No One is Talking About  appeared first on Security Boulevard.

Security headlines distract, but the threats keeping CISOs awake are fundamental gaps and software supply chain risks. Learn why basics and visibility matter most.

The post Sleepless in Security: What’s Actually Keeping CISOs Up at Night  appeared first on Security Boulevard.

The University of Pennsylvania and the University of Phoenix confirm that they are victims of the recent Oracle EBS hacking campaign.

The post Penn and Phoenix Universities Disclose Data Breach After Oracle Hack appeared first on SecurityWeek.

Names, addresses, email addresses, and phone numbers were compromised in a five-month-long data breach.

The post Personal Information of 33.7 Million Stolen From Coupang appeared first on SecurityWeek.

E-commerce company Coupang has confirmed a massive data breach affecting 33.7 million customer accounts in South Korea.

The Cybersecurity Coalition, an industry group of almost a dozen vendors, is urging the Trump Administration and Congress now that the government shutdown is over to take a number of steps to strengthen the country's cybersecurity posture as China, Russia, and other foreign adversaries accelerate their attacks.

The post Cybersecurity Coalition to Government: Shutdown is Over, Get to Work appeared first on Security Boulevard.

According to the federation, the unauthorized access was carried out using a compromised account.

The post French Soccer Federation Hit by Cyberattack, Member Data Stolen appeared first on SecurityWeek.

Hackers stole the personal information of customers and employees before deploying ransomware and crippling Asahi’s operations in Japan.

The post Asahi Data Breach Impacts 2 Million Individuals appeared first on SecurityWeek.

Multiple Mixpanel customers were impacted by a recent cyberattack targeting the product analytics company. 

The post OpenAI User Data Exposed in Mixpanel Hack appeared first on SecurityWeek.

3 min readAs AI platforms grow more complex and interdependent, small failures can cast long shadows. That’s what happened inside the open-source CrewAI platform, where a vulnerability in its error-handling logic surfaced during a provisioning failure. The resulting “exception response” – the message a service returns when it encounters an unhandled error during a request – contained […]

The post CrewAI GitHub Token Exposure Highlights the Growing Risk of Static Credentials in AI Systems appeared first on Aembit.

The post CrewAI GitHub Token Exposure Highlights the Growing Risk of Static Credentials in AI Systems appeared first on Security Boulevard.

The OnSolve CodeRED platform has been targeted by the Inc Ransom ransomware group, resulting in disruptions and a data breach.

The post Ransomware Attack Disrupts Local Emergency Alert System Across US appeared first on SecurityWeek.

Dartmouth College has disclosed a data breach after cybercriminals leaked over 226 Gb of files stolen from the university.

The post Dartmouth College Confirms Data Theft in Oracle Hack appeared first on SecurityWeek.

AI-enabled cybercriminals are exploiting the holiday shopping season with precision phishing, account takeovers, payment skimming and ransomware, forcing retailers to adopt real-time, adaptive defenses to keep pace.

The post AI Cybercriminals Target Black Friday and Cyber Monday appeared first on Security Boulevard.

AI-powered cyberattacks are rising fast, and AI firewalls offer predictive, adaptive defense—but their cost, complexity and ROI must be carefully justified as organizations weigh upgrades.

The post Are AI Firewalls Worth the Investment?  appeared first on Security Boulevard.

The 183M credentials came from infostealer logs. Learn why continuous password monitoring is essential for modern defense.

The post 183 Million Credentials Misreported as a Gmail Breach appeared first on Security Boulevard.