Amazon AI Privacy Panic — Bee Brings Bezos Panopticon
Amazzon Beee Buzzzz: It records everything you say (and what people around you say, too).
The post Amazon AI Privacy Panic — Bee Brings Bezos Panopticon appeared first on Security Boulevard.
Security Boulevard
New Crux Ransomware Emerges in Three Attacks This Month
A new ransomware variant dubbed "Crux" was detected by Huntress researchers in three attacks this month, with the group favoring RDP for initial access and legitimate processes to make it more difficult to detect it. The group also claims to be part of the BlackByte RaaS crew, though Huntress couldn't validate the claim.
The post New Crux Ransomware Emerges in Three Attacks This Month appeared first on Security Boulevard.
BforeAI Identifies Phishing Campaign Using Same Infrastructure Across Multiple Domains
BforeAI today disclosed the discovery of a phishing campaign that is leveraging the same core infrastructure to spoof multiple domains.
The post BforeAI Identifies Phishing Campaign Using Same Infrastructure Across Multiple Domains appeared first on Security Boulevard.
Is Ransomware Dying? Don’t Break Out the Champagne Just Yet
We’re seeing fewer attacks, but that doesn’t mean we’re safer. The latest data from NCC Group shows traditional ransomware is down — but threat actors are regrouping, rebranding, and rearming with AI and advanced social engineering.
The post Is Ransomware Dying? Don’t Break Out the Champagne Just Yet appeared first on Security Boulevard.
Akamai Identifies Coyote Malware Variant Capable of Compromising Microsoft UIA Framework
Akamai researchers today disclosed they have discovered a variant of Coyote malware that extracts specific banking and cryptocurrency exchanges by compromising the UI Automation (UIA) framework developed by Microsoft.
The post Akamai Identifies Coyote Malware Variant Capable of Compromising Microsoft UIA Framework appeared first on Security Boulevard.
Analysis Finds 131 Vulnerable Exposed Ports Per Organization
An analysis published today by ReliaQuest finds the number of exposed ports through which cybercriminals can gain access to IT environments has increased to 131 in the first half of 2025, a 27% increase.
The post Analysis Finds 131 Vulnerable Exposed Ports Per Organization appeared first on Security Boulevard.
Microsoft Patches SharePoint Flaws as Hackers Rush to Exploit Them
As Microsoft puts the final patch in place, a growing number of hackers, including several China state-sponsored threat groups, are quickly pushing forward to exploit the security flaws that will allow them compromise on-premises SharePoint servers to steal data and maintain persistence.
The post Microsoft Patches SharePoint Flaws as Hackers Rush to Exploit Them appeared first on Security Boulevard.
Seemplicity Leverages AI to Optimize Cybersecurity Remediation Efforts
Seemplicity today added artificial intelligence (AI) capabilities to its platform for managing cybersecurity remediations that promise to make teams more efficient.
The post Seemplicity Leverages AI to Optimize Cybersecurity Remediation Efforts appeared first on Security Boulevard.
Hackers Exploiting Microsoft Flaw to Attack Governments, Businesses
Hackers are exploiting a significant Microsoft vulnerability chain that allows them gain control of on-premises SharePoint servers, steal cryptographic keys, and access Windows applications like Outlook, Teams, and OneDrive. It also gives them persistence in the systems even after reboots and updates.
The post Hackers Exploiting Microsoft Flaw to Attack Governments, Businesses appeared first on Security Boulevard.
The Overlooked Risk in AI Infrastructure: Physical Security
As artificial intelligence (AI) accelerates across industries from financial modeling and autonomous vehicles to medical imaging and logistics optimization, one issue consistently flies under the radar: Physical security.
The post The Overlooked Risk in AI Infrastructure: Physical Security appeared first on Security Boulevard.
Securing Revenue Data in the Cloud: Compliance and Trust in a Digital Age
With cyberthreats intensifying and regulatory bodies tightening oversight, securing revenue data in the cloud is essential.
The post Securing Revenue Data in the Cloud: Compliance and Trust in a Digital Age appeared first on Security Boulevard.
Cybersecurity Isn’t Just an IT Line Item — It’s a Business Imperative
Cybersecurity officers need to remember that the reality is, most attacks don’t begin with a dramatic break-in… they start with a login.
The post Cybersecurity Isn’t Just an IT Line Item — It’s a Business Imperative appeared first on Security Boulevard.
The Expiring Trust Model: CISOs Must Rethink PKI in the Era of Short-Lived Certificates and Machine Identity
The way we manage certificates must transform. For CISOs, this is not a future problem; the time to re-architect digital trust is now.
The post The Expiring Trust Model: CISOs Must Rethink PKI in the Era of Short-Lived Certificates and Machine Identity appeared first on Security Boulevard.
Who’s Watching You? FBI IG Looks to Plug Holes in Ubiquitous Technical Surveillance
Security gaps, coupled with savvy cybercriminals, lend urgency to mitigating the potential for exploitation posed by surveillance tech.
The post Who’s Watching You? FBI IG Looks to Plug Holes in Ubiquitous Technical Surveillance appeared first on Security Boulevard.
Google Sues the Operators Behind the BadBox 2.0 Botnet
Google is suing the operators behind BadBox 2.0, accusing multiple Chinese threat groups of playing different roles in the operation of the massive botnet that rolled up more than 10 million devices to run large-scale ad fraud and other malicious campaigns.
The post Google Sues the Operators Behind the BadBox 2.0 Botnet appeared first on Security Boulevard.
Ukraine Pwns Russian Drone Maker — Gaskar is ‘Paralyzed’
All Your UAVs Are Belong to UKR: Ukrainian Cyber Alliance and Black Owl team up to hack manufacturer of Russian military drones, sources say.
The post Ukraine Pwns Russian Drone Maker — Gaskar is ‘Paralyzed’ appeared first on Security Boulevard.
The Challenges of Operationalizing Threat Intelligence
Most security teams subscribe to more threat‑intel feeds than they can digest, yet attackers keep winning. Cyware’s Jawahar Sivasankaran explains why: Outside the Fortune 500 and federal agencies, many organizations still treat cyberthreat intelligence (CTI) as another inbox rather than an engine for action. They know intel is “absolutely critical,” but legacy tools and skill gaps..
The post The Challenges of Operationalizing Threat Intelligence appeared first on Security Boulevard.
Summer Vacation Alert Surfaces More Than 5 Million Unsecured Wi-Fi Networks
Zimperium, a provider of mobile security software, this week published a report that notes more than 5 million unsecured public Wi-Fi networks have been detected globally since the beginning of 2025
The post Summer Vacation Alert Surfaces More Than 5 Million Unsecured Wi-Fi Networks appeared first on Security Boulevard.
Cambodia Arrests More Than 1,000 in Cyberscam Crackdown
Cambodian police and military arrested more than 1,000 people in a crackdown on cyberscam operations that have proliferated in recent years in Southeast Asia and now are spreading globally, ensnaring hundreds of thousands of people in human trafficking schemes who are forced to run romance and other online frauds.
The post Cambodia Arrests More Than 1,000 in Cyberscam Crackdown appeared first on Security Boulevard.
Critical MCP Vulnerabilities are Slipping Through the Cracks
We must pay attention to what holds everything together - the glue. That’s where the real MCP vulnerabilities are hiding.
The post Critical MCP Vulnerabilities are Slipping Through the Cracks appeared first on Security Boulevard.
The Home of the Security Bloggers Network