Ionut Arghire – Page 11 – WindowsTechs.com

Google DeepMind Researchers Map Web Attacks Against AI Agents

Posted on April 6, 2026 by Ionut Arghire

Malicious web content can be used to manipulate, deceive, and exploit autonomous AI agents navigating the internet, Google DeepMind researchers show. The researchers have identified six types of attacks against AI agents that can be mounted via web con… Continue reading Google DeepMind Researchers Map Web Attacks Against AI Agents→

Guardarian Users Targeted With Malicious Strapi NPM Packages

Posted on April 6, 2026 by Ionut Arghire

Hackers published 36 NPM packages posing as Strapi plugins to execute shells, escape containers, and harvest credentials.
The post Guardarian Users Targeted With Malicious Strapi NPM Packages appeared first on SecurityWeek.
Continue reading Guardarian Users Targeted With Malicious Strapi NPM Packages→

North Korean Hackers Target High-Profile Node.js Maintainers

Posted on April 6, 2026 by Ionut Arghire

The threat actor behind the Axios supply chain attack has been aiming at other maintainers in its social engineering campaign.
The post North Korean Hackers Target High-Profile Node.js Maintainers appeared first on SecurityWeek.
Continue reading North Korean Hackers Target High-Profile Node.js Maintainers→

Fortinet Rushes Emergency Fixes for Exploited Zero-Day

Posted on April 6, 2026 by Ionut Arghire

The improper access control bug in FortiClient EMS allows unauthenticated attackers to execute arbitrary code remotely.
The post Fortinet Rushes Emergency Fixes for Exploited Zero-Day appeared first on SecurityWeek.
Continue reading Fortinet Rushes Emergency Fixes for Exploited Zero-Day→

European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack

Posted on April 4, 2026 by Ionut Arghire

Hackers stole over 300GB of data from the Commission’s AWS environment, including personal information.
The post European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack appeared first on SecurityWeek.
Continue reading European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack→

TrueConf Zero-Day Exploited in Asian Government Attacks

Posted on April 3, 2026 by Ionut Arghire

A Chinese threat actor exploited the video conferencing platform to perform reconnaissance, escalate privileges, and execute additional payloads.
The post TrueConf Zero-Day Exploited in Asian Government Attacks appeared first on SecurityWeek.
Continue reading TrueConf Zero-Day Exploited in Asian Government Attacks→

Critical ShareFile Flaws Lead to Unauthenticated RCE

Posted on April 3, 2026 by Ionut Arghire

The vulnerabilities can be chained together to bypass authentication and upload arbitrary files to the server.
The post Critical ShareFile Flaws Lead to Unauthenticated RCE appeared first on SecurityWeek.
Continue reading Critical ShareFile Flaws Lead to Unauthenticated RCE→

React2Shell Exploited in Large-Scale Credential Harvesting Campaign

Posted on April 3, 2026 by Ionut Arghire

Using automated scanning and the Nexus Listener collection framework, the hackers compromised over 750 systems.
The post React2Shell Exploited in Large-Scale Credential Harvesting Campaign appeared first on SecurityWeek.
Continue reading React2Shell Exploited in Large-Scale Credential Harvesting Campaign→

North Korean Hackers Drain $285 Million From Drift in 10 Seconds

Posted on April 3, 2026 by Ionut Arghire

The attackers prepared infrastructure and multiple nonce-based transactions, took over an admin key, and drained five vaults.
The post North Korean Hackers Drain $285 Million From Drift in 10 Seconds appeared first on SecurityWeek.
Continue reading North Korean Hackers Drain $285 Million From Drift in 10 Seconds→

Cisco Patches Critical and High-Severity Vulnerabilities

Posted on April 2, 2026 by Ionut Arghire

The bugs could lead to authentication bypass, remote code execution, information disclosure, and privilege escalation.
The post Cisco Patches Critical and High-Severity Vulnerabilities appeared first on SecurityWeek.
Continue reading Cisco Patches Critical and High-Severity Vulnerabilities→