ChatGPT is down worldwide, conversations dissapeared for users
OpenAI's AI-powered ChatGPT is down worldwide with users receiving errors when attempting to access chats, with no reasons currently given. [...]
Bleeping Computer.
Shai-Hulud 2.0 NPM malware attack exposed up to 400,000 dev secrets
6 days 22 hours ago
The second Shai-Hulud attack last week exposed around 400,000 raw secrets after infecting hundreds of packages in the NPM (Node Package Manager) registry and publishing stolen data in 30,000 GitHub repositories. [...]
Bill Toulas
Microsoft Defender portal outage disrupts threat hunting alerts
1 week ago
Microsoft is working to mitigate an ongoing incident that has been blocking access to some Defender XDR portal capabilities, including threat hunting alerts. [...]
Sergiu Gatlan
Cybercrime Goes SaaS: Renting Tools, Access, and Infrastructure
1 week ago
Cybercrime has fully shifted to a subscription model, with phishing kits, Telegram OTP bots, infostealer logs, and even RATs now rented like SaaS tools. Varonis explains how this "crime-as-a-service" economy lowers the barrier to entry and gives low-skill attackers on-demand access to advanced capabilities. [...]
Sponsored by Varonis
North Korea lures engineers to rent identities in fake IT worker scheme
1 week ago
In an unprecedented intelligence operation, security researchers exposed how North Korean IT recruiters target and lure developers into renting their identities for illicit fundraising. [...]
Ionut Ilascu
Google fixes two Android zero days exploited in attacks, 107 flaws
1 week ago
Google has released the December 2025 Android security bulletin, addressing 107 vulnerabilities, including two flaws actively exploited in targeted attacks. [...]
Bill Toulas
Fake Calendly invites spoof top brands to hijack ad manager accounts
1 week ago
An ongoing phishing campaign impersonates popular brands, such as Unilever, Disney, MasterCard, LVMH, and Uber, in Calendly-themed lures to steal Google Workspace and Facebook business account credentials. [...]
Bill Toulas
Microsoft: KB5070311 triggers File Explorer white flash in dark mode
1 week ago
Microsoft has confirmed that the KB5070311 preview update is triggering bright white flashes when launching the File Explorer in dark mode on Windows 11 systems. [...]
Sergiu Gatlan
University of Pennsylvania confirms new data breach after Oracle hack
1 week ago
The University of Pennsylvania (Penn) has confirmed a new data breach after attackers stole documents containing personal information from its Oracle E-Business Suite servers in August. [...]
Sergiu Gatlan
Windows 11 KB5070311 update fixes File Explorer freezes, search issues
1 week ago
Microsoft has released the KB5070311 preview cumulative update for Windows 11 systems, which includes 49 changes, including fixes for File Explorer freezes and search issues. [...]
Sergiu Gatlan
Glassworm malware returns in third wave of malicious VS Code packages
1 week ago
The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages added on the two platforms. [...]
Bill Toulas
SmartTube YouTube app for Android TV breached to push malicious update
1 week ago
The popular open-source SmartTube YouTube client for Android TV was compromised after an attacker gained access to the developer's signing keys, leading to a malicious update being pushed to users. [...]
Bill Toulas
Microsoft says new Outlook can't open some Excel attachments
1 week 1 day ago
Microsoft is working to resolve a known issue that prevents some users from opening Excel email attachments in the new Outlook client. [...]
Sergiu Gatlan
Retail giant Coupang data breach impacts 33.7 million customers
1 week 1 day ago
South Korea's largest retailer, Coupang, has suffered a data breach that exposed the personal information of 33.7 million customers. [...]
Bill Toulas
When Hackers Wear Suits: Protecting Your Team from Insider Cyber Threats
1 week 1 day ago
Hackers impersonate IT pros with deepfakes, fake resumes, and stolen identities, turning hiring pipelines into insider threats. Huntres sLabs explains how stronger vetting and access controls help stop these threats. [...]
Sponsored by Huntress Labs
ShadyPanda browser extensions amass 4.3M installs in malicious campaign
1 week 1 day ago
A long-running malware operation known as "ShadyPanda" has amassed over 4.3 million installations of seemingly legitimate Chrome and Edge browser extensions that evolved into malware. [...]
Bill Toulas
Google deletes X post after getting caught using a ‘stolen’ AI recipe infographic
1 week 1 day ago
Google is facing backlash on X after a viral post for its NotebookLM appeared to use a food blogger's work without credit. [...]
Mayank Parmar
Police takes down Cryptomixer cryptocurrency mixing service
1 week 1 day ago
Law enforcement officers from Switzerland and Germany have taken down the Cryptomixer cryptocurrency-mixing service, believed to have helped cybercriminals launder over €1.3 billion in Bitcoin since its launch in 2016. [...]
Sergiu Gatlan
Japanese beer giant Asahi says data breach hit 1.5 million people
1 week 3 days ago
Asahi Group Holdings, Japan's largest beer producer, has finished the investigation into the September cyberattack and found that the incident has impacted up to 1.9 million individuals. [...]
Bill Toulas
Leak confirms OpenAI is preparing ads on ChatGPT for public roll out
1 week 3 days ago
OpenAI is now internally testing 'ads' inside ChatGPT that could redefine the web economy. [...]
Mayank Parmar
Checked
17 hours 49 minutes ago
BleepingComputer - All Stories
Bleeping Computer. feed