Zscaler, a cybersecurity firm with one of the largest security cloud infrastructures in the world, disclosed a Salesloft Drift supply chain incident impacting many of its Salesforce customers. Hackers reportedly stole Salesloft Drift OAuth and refresh tokens, potentially enabling unauthorized
Cybersecurity researchers from Trails of Bits have discovered a new vulnerability in AI systems that allows malicious actors to hide commands within images. The team used a prompt injection strategy to exploit the image downscaling feature in several AI models. According to the report, published
The online forum 4chan has engaged legal counsel to formally reject implementing the UK’s new age verification mandates. 4chan had already announced its intention in January to refuse to comply with any form of compulsory age verification requirements for its users. According to the new UK law,
Malicious actors targeted Nevada’s networks and services in a recent ransomware-based cyberattack. Local authorities confirmed that the incident disrupted websites, phone lines, and forced state offices to close. An ongoing investigation has revealed that some data was exfiltrated from the state’s
According to multiple reports, a threat actor is attempting to sell the stolen data of over 21.3 million PrestaShop users on a dark web forum. Potential buyers can already view a subset of the data for free before deciding whether to bid on the entire database. The data obtained in the breach
Researchers from the cybersecurity firm Check Point revealed that hackers had been exploiting Google Classroom to distribute over 115,000 phishing emails. The cybercriminals targeted approximately 13,500 organizations in Asia, Europe, the Middle East, and North America. According to the report
A member of the notorious hacker group Scattered Spider, 20-year-old American Noah Urban, was sentenced to 10 years in prison on Wednesday. Urban pleaded guilty to multiple charges, including fraud, theft, and targeting cryptocurrency victims and companies. According to Bloomberg, Urban is the
The UK’s Children’s Commissioner has filed a petition with the government to restrict VPN use for minors to prevent circumvention of age verification requirements under the Online Safety Act. This comes in response to a 6,000% increase in the demand for VPNs immediately following the Online Safety
NordVPN announced that it will discontinue its Meshnet feature, effective 1 December 2025. Current and new users will be able to continue using the feature as normal until then. No other features will be impacted by Meshnet’s removal. NordVPN first unveiled Meshnet in 2022 as a free feature that
A group of hackers claims to have breached PayPal and is offering a dataset of 15.8 million credentials on the deep web. The threat actor behind the allegedly stolen data insists it is up to date and describes it as a “goldmine” for cybercriminals. PayPal denies the breach. According to