ClickFix attacks are back, tricking users with fake Windows update screens. This sneaky social engineering tactic now leads victims to download infostealer malware like Rhadamanthys. Remember, a real Windows update won’t ask you to open the Run prompt! Stay alert and avoid running suspicious commands.

Threat actors are exploiting the ShadowRay vulnerability in the Ray framework, turning AI infrastructure into cryptomining and botnet launchpads. This campaign highlights how attackers hijack misconfigured AI environments to run unauthorized workloads. With over 230,000 exposed Ray environments, ShadowRay 2.0 shows the risk of ignoring configuration best practices.

A semicolon in Oracle’s Identity Manager code lets hackers waltz past security like it’s a VIP pass. This Java vulnerability, CVE-2025-61757, scores a whopping 9.8 on the CVSS scale. Oracle customers, patch now—or risk joining a not-so-exclusive breach club!

Beware of Blender files from 3D model marketplaces—they might come with a side of StealC V2 malware! This Russian-linked campaign uses malicious Blender files to sneakily deliver malware. Remember, if it looks too good to be true, it probably needs a sandbox! Stay safe, and check your Auto Run settings.

AWS has stunned the tech world by reviving Amazon CodeCommit, a service once deemed obsolete, proving that even giants can admit when they’re wrong. With apologies to customers and fresh investments in place, it’s like watching a corporate zombie flick—except this time, the undead product is actually useful.

The cybersecurity job market is being disrupted as automation and AI start taking over traditional entry-level roles. Experts discuss the challenges of finding top talent and the need for human networks, practical experience, and creative thinking to nurture future cybersecurity professionals. Stay ahead by embracing AI and building a robust network.

Vision language models are like toddlers with a PhD—they’re smart but still need some hand-holding. These models combine computer vision and natural language processing to tackle real-world enterprise challenges. From deciphering x-rays to enhancing security, the potential is vast, but they could use a bit more maturity and supervision.

ClickFix attacks have evolved, now using a full-screen browser page mimicking Windows Updates to trick users into executing malicious code. cybercriminals hide malware inside images using steganography, making it harder to detect. The attack lures users to run commands via a fake update or human verification page, deploying info-stealers upon execution.

Afraid of public Wi-Fi or Bluetooth? You might be falling for “hacklore” instead of focusing on real cybersecurity threats. Hacklore.org, backed by 86 security leaders, aims to bust these myths and offer practical advice like using strong passwords and multi-factor authentication to avoid getting hacked for real.

Toto Wolff is waving goodbye to 15% of his Mercedes F1 team shares, handing them to cybersecurity guru George Kurtz. Now a co-owner, Kurtz is set to turbocharge Mercedes’ tech game. From race cars to firewalls, Kurtz believes in the power of milliseconds and data to secure the checkered flag!

Harvard’s Alumni Affairs systems were hit by a vishing breach, exposing contacts and donation data. The university assures us no Social Security numbers were involved. Harvard advises caution with unexpected calls or emails, especially those asking for sensitive information. Remember, if it sounds fishy, it might just be vishy!

X (formerly known as Twitter) has rolled out a location transparency feature, and while it’s not winning any privacy awards, it’s certainly keeping things interesting. By revealing account origins, it’s causing chaos for deception artists and mischievous influencers alike. So, if you’re “definitely in the US,” maybe check your settings.

SitusAMC, a financial services firm, recently revealed a data breach impacting its clients’ information. The company, which manages back-office operations for banking giants, assures that business remains uninterrupted. While the investigation continues, SitusAMC is directly notifying affected parties, minus the classic “Hello, you’ve won a free cruise!” approach.

Fluent Bit’s vulnerabilities have been uncovered, sparking a cyber circus of potential cloud chaos. Attackers could bypass authentication, execute remote code, or even manipulate logs like mischievous data gremlins. But fear not! Patching to the latest version can save your cloud from turning into a hacker’s playground.

CrowdStrike fired an employee for selling screenshots of their computer to cybercriminals Scattered Lapsus$ Hunters. The hackers paid $25,000 for these images, falsely claiming system access. CrowdStrike confirmed there was no breach, terminating the insider and involving law enforcement. Looks like someone took “screensharing” a bit too literally!

CISA confirmed that the Oracle Identity Manager vulnerability CVE-2025-61757 has been exploited in the wild. This flaw, a cybersecurity piñata, was patched in October 2025 but not before attackers had a field day. It allows remote code execution, making it as popular as free Wi-Fi at a coffee shop. Stay secure, folks!

Delta Dental of Virginia experienced a data breach after an email hack, exposing sensitive info of about 146,000 customers. While they detected the breach, there’s no evidence of misuse. As a consolation, they’re offering a year’s worth of free identity protection, proving once again that dental care isn’t just about flossing anymore!

The Shai Hulud npm worm has dramatically returned, compromising 19,000 code projects in hours. This cyber pest turns victims into instant threats by stealing and using credentials. With a 100-fold increase in infections, developers face a coding apocalypse. Remember, in the world of coding, the worm always gets the early bird!

Fluent Bit, a favorite in cloud services and AI labs, had “trivial-to-exploit” vulnerabilities open for years. These bugs let attackers bypass authentication and wreak havoc on cloud services. Updating to version 4.1.1 fixes the issues, saving the day faster than a superhero with a tech support hotline.

Fluent Bit, deployed over 15 billion times, faces vulnerabilities that could spoof tags or manipulate file paths. With fixes in new versions, it’s crucial to update and secure configurations. Otherwise, attackers might turn your logs into digital stand-up comedy, and trust us, nobody wants a punchline in their security protocol.