Weekly Update 484
Presently sponsored by: Malwarebytes Browser Guard blocks phishing, ads, scams, and trackers for safer, faster browsing I think the start…
Security
Friday Squid Blogging: Squid Camouflage
New research: Abstract: Coleoid cephalopods have the most elaborate camouflage system in the animal kingdom. This enables them to hide…
Legacy FortiOS Bug Exploited to Bypass Authentication
In the realm of cybersecurity, vulnerabilities are a constant concern, and the repercussions of neglecting older flaws can be significant.…
Critical Security Alert! MongoDB RCE Flaw Could Allow Complete Server Control
A high-severity vulnerability has been identified and addressed in MongoDB, a popular open-source NoSQL database. This flaw, tracked as CVE-2025-14847,…
Verified Mark Certificates Are Driving the Next Phase of Banking Trust
Emails are one of the most critical channels connecting with their customers. Financial institutions use emails to send transaction alerts,…
Urban VPN Proxy Surreptitiously Intercepts AI Chats
This is pretty scary: Urban VPN Proxy targets conversations across ten AI platforms: ChatGPT, Claude, Gemini, Microsoft Copilot, Perplexity, DeepSeek,…
Denmark Accuses Russia of Conducting Two Cyberattacks
News: The Danish Defence Intelligence Service (DDIS) announced on Thursday that Moscow was behind a cyber-attack on a Danish water…
Zero-Day Crisis: CVE-2025-20393 Unpatched on Cisco Email Gateways, Exploited by China-Linked Hackers
Network edge devices continue to be a primary target for sophisticated state-sponsored actors aiming to bypass traditional perimeter defenses. Recent…
From Agent2Agent Prompt Injection to Runtime Self-Defense: How Wallarm Redefines Agentic AI Security
Is an AI-to-AI attack scenario a science fiction possibility only for blockbusters like the Terminator series of movies? Well, maybe…