Leading medical technology company Stryker has been hit by a wiper malware attack claimed by Handala, an Iranian-linked and pro-Palestinian hacktivist group. […]
New PhantomRaven NPM attack wave steals dev data via 88 packages
New attack waves from the ‘PhantomRaven’ supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers. […]
Researchers Trick Perplexity’s Comet AI Browser Into Phishing Scam in Under Four Minutes
Agentic web browsers that leverage artificial intelligence (AI) capabilities to autonomously execute actions across multiple websites on behalf of a user could be trained and tricked into falling prey to phishing and scam traps.
The attack, at its core, takes advantage of AI browsers’ tendency to reason their actions and use it against the model itself to lower their security guardrails, Guardio
The attack, at its core, takes advantage of AI browsers’ tendency to reason their actions and use it against the model itself to lower their security guardrails, Guardio
MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack
Stryker was targeted by the Handala group, which claims to have wiped more than 200,000 of the company’s devices.
The post MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack appeared first on SecurityWeek.
Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials
Cybersecurity researchers have disclosed details of two now-patched security flaws in the n8n workflow automation platform, including two critical bugs that could result in arbitrary command execution.
The vulnerabilities are listed below –
The vulnerabilities are listed below –
CVE-2026-27577 (CVSS score: 9.4) – Expression sandbox escape leading to remote code execution (RCE)
CVE-2026-27493 (CVSS score: 9.5) – Unauthenticated
Wiz Joins Google Cloud as Landmark Acquisition Closes
Google has completed its $32 billion acquisition of the cloud security giant, which will maintain its brand.
The post Wiz Joins Google Cloud as Landmark Acquisition Closes appeared first on SecurityWeek.
CISO Conversations: Aimee Cardwell
Aimee Cardwell started her career at Netscape, become a VP of engineering at American Express, CISO at UnitedHealth Group, and now CISO in Residence at Transcend.
The post CISO Conversations: Aimee Cardwell appeared first on SecurityWeek.
238,000 Impacted by Bell Ambulance Data Breach
Hackers stole personal information such as names, Social Security numbers, and driver’s license numbers.
The post 238,000 Impacted by Bell Ambulance Data Breach appeared first on SecurityWeek.
Meta adds new WhatsApp, Facebook, and Messenger anti-scam tools
Meta is introducing new anti-scam protections across its platforms, deploying systems and user-facing warnings to protect users against scammers. […]
Scanner Raises $22 Million for AI-Powered Threat Hunting
The company connects AI agents to security data lakes for interactive investigations, detection engineering, and autonomous response.
The post Scanner Raises $22 Million for AI-Powered Threat Hunting appeared first on SecurityWeek.