Three NPM packages posing as developer tools for Cursor AI code editor’s macOS version contain a backdoor.
The post Malicious NPM Packages Target Cursor AI’s macOS Users appeared first on SecurityWeek.
Category Added in a WPeMatico Campaign
Rising Tides: Kelley Misata on Bringing Cybersecurity to Nonprofits
Sightline Security’s founder explains why nonprofits need cybersecurity solutions tailored to their unique missions — and why vendors need to listen.
The post Rising Tides: Kelley Misata on Bringing Cybersecurity to Nonprofits appeared first on SecurityWeek.
SAP Zero-Day Targeted Since January, Many Sectors Impacted
Hundreds of SAP NetWeaver instances hacked via a zero-day that allows remote code execution, not only arbitrary file uploads, as initially believed.
The post SAP Zero-Day Targeted Since January, Many Sectors Impacted appeared first on SecurityWeek.
Company and Personal Data Compromised in Recent Insight Partners Hack
VC firm Insight Partners is informing partners and employees that their information was exposed in the January 2025 cyberattack.
The post Company and Personal Data Compromised in Recent Insight Partners Hack appeared first on SecurityWeek.
Valuable Information Leaked in LockBit Ransomware Hack
Private messages, Bitcoin addresses, victim data, and attacker information were leaked after someone hacked a LockBit admin panel.
The post Valuable Information Leaked in LockBit Ransomware Hack appeared first on SecurityWeek.
Valarian Bags $20M Seed Capital for ‘Isolation-First’ Infrastructure Tech
British startup exits stealth with $20 million in seed-stage financing led by US investors Scout Ventures and Artis Ventures.
The post Valarian Bags $20M Seed Capital for ‘Isolation-First’ Infrastructure Tech appeared first on SecurityWeek.
Europol Announces More DDoS Service Takedowns, Arrests
Four people have been arrested in Poland and several websites associated with DDoS-for-hire services have been shut down.
The post Europol Announces More DDoS Service Takedowns, Arrests appeared first on SecurityWeek.
Possible Zero-Day Patched in SonicWall SMA Appliances
SonicWall patches three SMA 100 vulnerabilities, including a potential zero-day, that could be chained to execute arbitrary code remotely.
The post Possible Zero-Day Patched in SonicWall SMA Appliances appeared first on SecurityWeek.
Google Finds Data Theft Malware Used by Russian APT in Select Cases
Russia-linked APT Star Blizzard is using the ClickFix technique in recent attacks distributing the LostKeys malware.
The post Google Finds Data Theft Malware Used by Russian APT in Select Cases appeared first on SecurityWeek.
Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet
The patches for an exploited Samsung MagicINFO vulnerability are ineffective and a Mirai botnet has started targeting it.
The post Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet appeared first on SecurityWeek.