Autore: SecurityIT

New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention

new-wiper-malware-targeted-venezuelan-energy-sector-prior-to-us-intervention

Dubbed Lotus Wiper, the malware targets recovery mechanisms, overwrites drives, and systematically deletes files.

The post New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention appeared first on SecurityWeek.

Mirai Botnet Targets Flaw in Discontinued D-Link Routers

mirai-botnet-targets-flaw-in-discontinued-d-link-routers

The exploitation of the command injection vulnerability started one year after public disclosure and PoC exploit code publication.

The post Mirai Botnet Targets Flaw in Discontinued D-Link Routers appeared first on SecurityWeek.

Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data

are-sboms-failing?-supply-chain-attacks-rise-as-security-teams-struggle-with-sbom-data

Researcher says the missing piece is a governance-driven intelligence layer that turns SBOM and VEX data into explainable security decisions.

The post Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data appeared first on SecurityWeek.

Claude Mythos Finds 271 Firefox Vulnerabilities

claude-mythos-finds-271-firefox-vulnerabilities

All the flaws could have also been found by an elite human researcher, according to Mozilla.

The post Claude Mythos Finds 271 Firefox Vulnerabilities appeared first on SecurityWeek.

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks

north-korean-hackers-use-applescript,-clickfix-in-fresh-macos-attacks

The campaigns focus on financial organizations, including cryptocurrency, venture capital, and blockchain entities.

The post North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks appeared first on SecurityWeek.

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals

google-antigravity-in-crosshairs-of-security-researchers,-cybercriminals

Researchers discovered a remote code execution vulnerability and cybercriminals are using its reputation to deliver malware.

The post Google Antigravity in Crosshairs of Security Researchers, Cybercriminals appeared first on SecurityWeek.

Oracle Patches 450 Vulnerabilities With April 2026 CPU

oracle-patches-450-vulnerabilities-with-april-2026-cpu

The company released 481 new security patches across 28 product families, including over 300 fixes for remotely exploitable, unauthenticated flaws.

The post Oracle Patches 450 Vulnerabilities With April 2026 CPU appeared first on SecurityWeek.

Third US Security Expert Admits Helping Ransomware Gang

third-us-security-expert-admits-helping-ransomware-gang

Angelo Martino of Florida has pleaded guilty to collaborating with the BlackCat cybercrime group while working as a ransomware negotiator.

The post Third US Security Expert Admits Helping Ransomware Gang appeared first on SecurityWeek.

Dozens of Malicious Crypto Apps Land in Apple App Store

dozens-of-malicious-crypto-apps-land-in-apple-app-store

Masquerading as popular cryptocurrency wallets, the apps can hijack recovery phrases and private keys.

The post Dozens of Malicious Crypto Apps Land in Apple App Store appeared first on SecurityWeek.

Unsecured Perforce Servers Expose Sensitive Data From Major Orgs

unsecured-perforce-servers-expose-sensitive-data-from-major-orgs

Things are improving, but a researcher has still identified over 1,500 Perforce P4 instances allowing attackers to read files on the server.

The post Unsecured Perforce Servers Expose Sensitive Data From Major Orgs appeared first on SecurityWeek.