Microsoft Disrupts Malware-Signing Service Used by Ransomware Gangs

Microsoft disrupted Fox Tempest, a malware-signing service accused of abusing Azure certificates to disguise ransomware and malware as trusted software.
The post Microsoft Disrupts Malware-Signing Service Used by Ransomware Gangs appeared first on Tech… Continue reading Microsoft Disrupts Malware-Signing Service Used by Ransomware Gangs

Over 1 Million Baby Monitors, Security Cameras Exposed Through Meari Flaws

Meari IoT flaws reportedly exposed baby monitor images, camera activity, and device data across more than 1 million connected devices.
The post Over 1 Million Baby Monitors, Security Cameras Exposed Through Meari Flaws appeared first on TechRepublic.
Continue reading Over 1 Million Baby Monitors, Security Cameras Exposed Through Meari Flaws

ShinyHunters Extorts Universities in New Instructure Canvas Hack

ShinyHunters-linked attackers defaced Canvas portals, disrupting finals week access and exposing SaaS security risks for schools.
The post ShinyHunters Extorts Universities in New Instructure Canvas Hack appeared first on TechRepublic.
Continue reading ShinyHunters Extorts Universities in New Instructure Canvas Hack

Google Update: Android Flaw Could Put Billions of Devices at Risk

Google patched an Android zero-click RCE flaw affecting multiple versions. Here’s what IT teams should know and how to reduce mobile risk.
The post Google Update: Android Flaw Could Put Billions of Devices at Risk appeared first on TechRepublic.
Continue reading Google Update: Android Flaw Could Put Billions of Devices at Risk

Microsoft Defender Bug Triggers False Malware Alerts for DigiCert Certificates

Microsoft fixed a Defender false positive that flagged legitimate DigiCert certificates as malware, disrupting Windows trust stores for some IT teams.
The post Microsoft Defender Bug Triggers False Malware Alerts for DigiCert Certificates appeared firs… Continue reading Microsoft Defender Bug Triggers False Malware Alerts for DigiCert Certificates

Cisco Introduces Model Provenance Kit to Strengthen AI Supply Chain Security

Cisco’s open-source Model Provenance Kit helps organizations verify AI model origins, trace lineage, and reduce AI supply chain security risks.
The post Cisco Introduces Model Provenance Kit to Strengthen AI Supply Chain Security appeared first on Tech… Continue reading Cisco Introduces Model Provenance Kit to Strengthen AI Supply Chain Security

ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security concerns.
The post ClickUp Data Leak Exposes Enterprise Emails for Over a Year appeared first on TechRepublic.
Continue reading ClickUp Data Leak Exposes Enterprise Emails for Over a Year

Microsoft Patch Still Leaves 1,300 SharePoint Servers Exposed

More than 1,300 internet-exposed SharePoint servers remain unpatched against CVE-2026-32201, a spoofing flaw Microsoft says was exploited as a zero-day.
The post Microsoft Patch Still Leaves 1,300 SharePoint Servers Exposed appeared first on TechRepubl… Continue reading Microsoft Patch Still Leaves 1,300 SharePoint Servers Exposed

Malicious TikTok Downloader Extensions Quietly Compromised 130K Users

Malicious browser extensions disguised as TikTok downloaders compromised 130,000 users, exposing a growing blind spot in enterprise security.
The post Malicious TikTok Downloader Extensions Quietly Compromised 130K Users appeared first on TechRepublic.
Continue reading Malicious TikTok Downloader Extensions Quietly Compromised 130K Users