infosecintel – Page 2 – Curated Information Security Articles and Threat Intelligence News

China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions

May 5, 2026

A sophisticated China-nexus advanced persistent threat (APT) group has been attributed to attacks targeting government entities in South America since at least late 2024 and government agencies in southeastern Europe in 2025. The activity is being tracked by Cisco Talos under the moniker UAT-8302, with post-exploitation involving the deployment ofRead More »China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions

Hacker Conversations: Joey Melo on Hacking AI

May 5, 2026

AI red team specialist details his methods for manipulating AI guardrails through jailbreaking and data poisoning, helping developers harden machine learning models. The post Hacker Conversations: Joey Melo on Hacking AI appeared first on SecurityWeek.

Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft

May 5, 2026

Dubbed Bleeding Llama, the heap out-of-bounds read issue can be exploited remotely, without authentication. The post Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft appeared first on SecurityWeek.

Critical Remote Code Execution Vulnerability Patched in Android

May 5, 2026

CVE-2026-0073 affects Android’s System component and it can be exploited without any user interaction. The post Critical Remote Code Execution Vulnerability Patched in Android appeared first on SecurityWeek.

The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed

May 5, 2026

Every AI tool, workflow automation, and productivity app your employees connected to Google or Microsoft this year left something behind: a persistent OAuth token with no expiration date, no automatic cleanup, and in most organizations, no one watching it. Your perimeter controls don’t see it. Your MFA doesn’t stop it.Read More »The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed

MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks

May 5, 2026

Threat actors are actively exploiting a critical security flaw impacting an open-source content management system (CMS) known as MetInfo, according to new findings from VulnCheck. The vulnerability in question is CVE-2026-29014 (CVSS score: 9.8), a code injection flaw that could result in arbitrary code execution. “MetInfo CMS versions 7.9, 8.0,Read More »MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks

Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server

May 5, 2026

The most severe of these security defects could allow remote attackers to execute arbitrary code. The post Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server appeared first on SecurityWeek.

Karakurt Ransomware Negotiator Sentenced to Prison

May 5, 2026

Deniss Zolotarjovs was directly involved in extortion strategies and in negotiations with victim companies. The post Karakurt Ransomware Negotiator Sentenced to Prison appeared first on SecurityWeek.

DarkSword Malware

May 5, 2026

DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS. Google Threat Intelligence Group (GTIG) has identified a new iOS full-chain exploit that leveraged multiple zero-day vulnerabilities to fully compromise devices. Based on toolmarks in recovered payloads, we believe the exploit chain to be called DarkSword. Since at leastRead More »DarkSword Malware

We Scanned 1 Million Exposed AI Services. Here’s How Bad the Security Actually Is

May 5, 2026

While the software industry has made genuine strides over the past few decades to deliver products securely, the furious pace of AI adoption is putting that progress at risk. Businesses are moving fast to self-host LLM infrastructure, drawn by the promise of AI as a force multiplier and the pressureRead More »We Scanned 1 Million Exposed AI Services. Here’s How Bad the Security Actually Is

« Previous
1
2
3
4
…
485
Next »