Aggregator
Google’s New AI Agent, CodeMender, Automatically Rewrites Vulnerable Code
Google has introduced CodeMender, a new artificial intelligence-powered agent that automatically enhances software security by identifying and fixing vulnerabilities. This initiative addresses the growing gap between the rapid, AI-assisted discovery of security flaws and the time-consuming manual effort required to patch them. Leveraging advanced AI, CodeMender not only reacts to new threats but also proactively […]
The post Google’s New AI Agent, CodeMender, Automatically Rewrites Vulnerable Code appeared first on Cyber Security News.
ClamAV 1.5.0 Released with Enhanced MS Office and PDF File Verification
ClamAV 1.5.0 is now available with new features that strengthen malware detection in Microsoft Office and PDF documents. This update marks a significant step forward for users who need reliable and thorough scanning of encrypted files and embedded links. Alongside improved file checks, the release also adds support for external signature verification, flexible hashing options, […]
The post ClamAV 1.5.0 Released with Enhanced MS Office and PDF File Verification appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Why SOC Efficiency Is the Most Valuable Currency in Cybersecurity
We Raised $15M to Build the Future of Security Data
We’re excited to share that Realm Security has raised a $15M Series A, just 12 months after our $5M seed round. We wouldn’t be here without our customers, our team, and our partners. Thank you for believing in what we’re building and for pushing us to make security data smarter, faster, and more useful every day.
The post We Raised $15M to Build the Future of Security Data appeared first on Realm.Security.
The post We Raised $15M to Build the Future of Security Data appeared first on Security Boulevard.
AI Chatbot Exploited as a Backdoor to Access Sensitive Data and Infrastructure
The rapid adoption of generative AI (GenAI), especially large language model (LLM) chatbots, has revolutionized customer engagement by delivering unparalleled efficiency and personalization. Yet, with this transformative power comes an equally formidable risk: adversaries are increasingly weaponizing AI applications to gain unauthorized access to critical systems. A compromised chatbot can morph from a helpful assistant […]
The post AI Chatbot Exploited as a Backdoor to Access Sensitive Data and Infrastructure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Google Chrome security advisory (AV25-649)
OpenAI Blocks ChatGPT Accounts Linked to Chinese Hackers Developing Malware
OpenAI has taken decisive action to stop misuse of its ChatGPT models by banning accounts tied to a group of Chinese hackers. This move reflects OpenAI’s core aim to ensuring artificial general intelligence benefits everyone. By setting clear rules and acting swiftly on policy violations, OpenAI hopes to keep AI tools safe and accessible for […]
The post OpenAI Blocks ChatGPT Accounts Linked to Chinese Hackers Developing Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Используете бесплатный VPN на телефоне? Вы участник эксперимента, где анонимность оказалась иллюзией
Yurei Ransomware Leverages SMB Shares and Removable Drives to Encrypt Files
Yurei ransomware first emerged in early September 2025, targeting Windows environments with a sophisticated Go-based payload designed for rapid, large-scale encryption. Once executed, the malware enumerates all accessible local and network drives, appends a .Yurei extension to each file, and writes unique ransom notes in every affected directory. Its operators then demand payment over Tor, […]
The post Yurei Ransomware Leverages SMB Shares and Removable Drives to Encrypt Files appeared first on Cyber Security News.
CVE-2025-43934 | Dell PowerProtect Data Domain with Data Domain Operating System LTS2023 path traversal (dsa-2025-333 / EUVD-2025-32909)
CVE-2025-11405 | SourceCodester Hotel and Lodge Management System 1.0 /del_tax.php ID sql injection (EUVD-2025-32908)
CVE-2025-61670 | bytecodealliance wasmtime up to 37.0.1 C API release of resource (GHSA-vvp9-h8p2-xwfc / EUVD-2025-32904)
CVE-2025-61776 | DependencyTrack dependency-track up to 4.13.4 .NET insufficiently protected credentials (GHSA-83g2-vgqh-mgxc / EUVD-2025-32901)
CVE-2025-45375 | Dell PowerProtect Data Domain with Data Domain Operating System LTS2023 stack-based overflow (dsa-2025-333 / EUVD-2025-32902)
银狐最新过沙箱高级免杀木马分析
Salesforce Refuses to Pay Ransom to Data-Stealing Hackers
Salesforce is refusing a demand by the hackers behind that widespread data-stealing attacks on its customers, which threatened to release massive amounts of the data unless the SaaS vendor negotiated a ransom payment. In an email, Salesforce reportedly told customers about its refusal to pay and offered them its support.
The post Salesforce Refuses to Pay Ransom to Data-Stealing Hackers appeared first on Security Boulevard.
CVE-2025-43727 | Dell PowerProtect Data Domain with Data Domain Operating System LTS2023 incorrect implementation of authentication algorithm (dsa-2025-159 / EUVD-2025-32898)
Nagios Vulnerability Allows Users to Retrieve Cleartext Administrative API Keys
Security researchers have identified two significant vulnerabilities in Nagios Log Server that expose critical system information and allow unauthorized service manipulation. The vulnerabilities, tracked as CVE-2025-44823 and CVE-2025-44824, affect versions prior to 2024R1.3.2 and pose serious risks to enterprise monitoring infrastructure. CVE ID Affected Product CVSS Score Severity Impact CVE-2025-44823 Nagios Log Server 9.9 CRITICAL […]
The post Nagios Vulnerability Allows Users to Retrieve Cleartext Administrative API Keys appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.