Cybersecurity Headlines

A major Texas hospital breach exposing patient data and its fallout. An urgent government order to patch a critical Citrix NetScaler flaw. Malware campaigns using ISO lure files to deliver remote access tools and crypto miners. Shifts in stealer malware tactics and new messaging‑app targeting warnings. Rising scams teaching criminals to exploit vacant homes.

Apple issues rare iOS 18 backports to close a web‑based exploit chain. The FBI calls a large surveillance system compromise a major incident. Stolen Trivy credentials and a malicious GitHub Action led to Cisco source code exfiltration. Supply‑chain and extortion claims surface around Light LLM and Mercore. Large scam network extraditions and a major retailer outage are also covered.

A maintainer account takeover added a malicious NPM dependency targeting multiple OSes. Research reveals an access broker validating stolen secrets and working with extortion groups. An accidental source-map leak exposed internals of a major AI model. Reports cover supply chain risks for quantum computing and a hefty fine for improper data access.

macOS Terminal paste-protection that delays pasted commands and new exploitation risks. A Russian sentencing tied to large-scale payment card theft. An EHR outage and investigation into possible patient data exposure at a healthcare platform. Active NetScaler exploits risking session token and credential leaks. AI-obfuscated credential theft campaigns and weak password risks in critical sectors.

Jacob Combs, CISO at Tandem Diabetes Care, focused on medical device and product security. Dennis Pickett, VP and CISO at RTI International, expert in enterprise strategy and incident response. They discuss Gemini scanning the dark web, phishing via trusted Bubble apps, exposed API keys, FCC router bans, shrinking offensive cyber capabilities, and rising automotive security risks.

A high-profile email theft from a director's personal account makes headlines. A major bank's app glitch briefly exposed customer payment and NI data. Researchers uncover thousands of exposed API credentials on public sites. New exploit additions, macOS stealers, and web plugin flaws round out the cyber threat roundup.

A developer extradition tied to a notorious infostealer and a telecom espionage campaign using stealthy kernel implants make the headlines. Former national security chiefs warn of weakening U.S. cyber defenses. Discussions touch on automotive vulnerabilities, API and code injection flaws, robocall crackdown proposals, and alleged state-linked scam ecosystems.

A rundown of Torg Grabber's campaign against over 700 crypto wallets and its evasion and exfiltration tactics. A supply-chain sabotage that backdoored LiteLLM Python packages via a tainted dependency. Deep dives on payload behavior stealing keys, secrets and spreading through Kubernetes. GitHub's new AI-powered security scanner and its autofix and detection results.

A new rule targets foreign consumer routers and how agencies will handle appeals. Drone activity briefly disrupted an AWS region and spurred customer migrations. A streaming service confirmed millions of users were exposed after a large support-ticket data leak. Plus new U.S. initiatives and legal moves shaping how emerging cyber threats and access brokers are handled.

A leaked DarkSword iPhone toolkit appears on GitHub, raising concerns about older iOS data theft. Gemini AI agents are being used to scan dark web posts and triage threats. A Trivy supply-chain compromise keeps spreading through infected images and credential stealers. Phone-based phishing and lightning-fast attacker handoffs are on the rise.