Cybersecurity News - Latest Threats, Breaches & Vulnerability Alerts | CyberPings

A new hacking tool, DarkSword, is being used by Russian hackers to exploit vulnerabilities in older iPhones. Millions of users are at risk of data theft just by visiting compromised websites. Keeping software updated is crucial for protection against this sophisticated malware.

Cloudflare has launched the Kimi K2.5 model on Workers AI, enhancing agent capabilities. This innovation significantly reduces inference costs, making AI more accessible for enterprises. As AI adoption grows, Cloudflare's solution addresses the need for cost-effective, scalable AI agents.

A new vulnerability called 'PolyShell' threatens Magento e-stores by allowing unauthorized remote code execution. This flaw affects all versions of Magento Open Source and Adobe Commerce. Immediate action is required to secure these platforms from potential attacks.

CISA is currently without leadership due to the DHS shutdown, raising serious cybersecurity risks. Experts warn that this could lead to missed threats and delayed responses. Urgent action is needed to restore effective leadership and funding.

Microsoft has launched Zero Trust for AI, providing new tools and guidance for secure AI integration. This initiative helps organizations manage unique AI risks effectively. Stay ahead of potential threats with these updated resources.

Spring has issued critical updates for vulnerabilities in Spring Boot and Spring Security. Users must act quickly to apply these updates to prevent unauthorized access. Protect your applications by reviewing the advisories and updating your systems.

AI-generated code is often insecure, with 62% testing as flawed. As AI agents call undocumented APIs, traditional security tools struggle. Snyk's AI-powered testing offers a solution.

Kubernetes has issued a security advisory for ingress-nginx vulnerabilities, affecting several versions. Users must update to secure versions to prevent exploitation. This is critical for maintaining operational integrity.

A new analysis reveals that 54 EDR killers exploit 34 vulnerable drivers using the BYOVD technique. This poses serious risks for organizations, especially during ransomware attacks. Understanding this threat is crucial for enhancing cybersecurity measures.