GhostApproval Flaws Let Top AI Coding Tools Write Outside Workspaces

Wiz found GhostApproval symlink flaws in major AI coding assistants that could hide sensitive file targets, bypass approval checks and enable system access too. Continue reading GhostApproval Flaws Let Top AI Coding Tools Write Outside Workspaces

Armored Likho Hits Government, Energy Sectors With BusySnake Stealer

Kaspersky details how the newly named Armored Likho APT uses BusySnake Stealer, AI-generated loaders, and phishing to target government and energy organizations. Continue reading Armored Likho Hits Government, Energy Sectors With BusySnake Stealer

UNK_MassTraction Exploits Roundcube Flaws Against US, Canadian Universities

China-linked UNK_MassTraction targets US and Canadian universities through Roundcube flaws, stealing sessions and opening access to research mail servers. Continue reading UNK_MassTraction Exploits Roundcube Flaws Against US, Canadian Universities

FBI and Spanish Police Arrest Alleged Cyber Army of Russia Reborn Member

Spanish police and the FBI arrested an alleged Cyber Army of Russia Reborn member as international efforts against pro Russia cyberattacks continue worldwide. Continue reading FBI and Spanish Police Arrest Alleged Cyber Army of Russia Reborn Member