The Hacker News

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

LiteLLM 1.82.7–1.82.8 supply chain attack exposed 33,185 secrets across 6,943 machines, leaving 3,760 valid credentials ...
Communications of the ACM

Passing on Passwords

“Passkeys are a way to log in without using a password,” said Oleg Naumenko, chief executive officer of Hideez, a ...
Microsoft

Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...
Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
PCMag

Your Smart Home Is a Target for Hackers. Lock It Down With These Quick Tips

Concerned about someone spying on your smart speaker, video doorbell, or even your fridge? Here's how to prevent hackers from ...