SecurityWeek

New ‘Broadside’ Botnet Poses Risk to Shipping Companies

The Broadside botnet is targeting shipping companies in a campaign focused on ensnaring TBK DVR devices vulnerable to ...
Dark Reading

'Broadside' Mirai Variant Targets Maritime Logistics Sector

Yet another variant of the Mirai botnet is threatening the maritime logistics sector by exploiting a critical flaw in digital recording devices used by companies on seagoing vessels. The attacks allow ...
Bleeping Computer

New Aquabotv3 botnet malware targets Mitel command injection flaw

A new variant of the Mirai-based botnet malware Aquabot has been observed actively exploiting CVE-2024-41710, a command injection vulnerability in Mitel SIP phones. The activity was discovered by ...
Hosted on MSN

Fortinet admits it found another worrying zero-day being exploited in attacks

Fortinet has issued an urgent patch for a high-severity vulnerability in FortiWeb which is apparently being abused in the wild. FortiWeb is the company’s dedicated web application firewall (WAF), ...
Futurism

OpenAI’s New AI Browser Is Already Falling Victim to Prompt Injection Attacks

OpenAI unveiled its Atlas AI browser this week, and it’s already catching heat. Cybersecurity researchers are particularly alarmed by its integrated “agent mode,” currently limited to paying ...
CSOonline

Misconfigured MCP servers expose AI agent systems to compromise

Hundreds of Model Context Protocol (MCP) servers used to link LLMs to third-party services, data sources, and tools include default configurations that could expose users to unauthorized OS command ...
Bleeping Computer

CISA warns of critical CentOS Web Panel bug exploited in attacks

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning that threat actors are exploiting a critical remote command execution flaw in CentOS Web Panel (CWP). The agency has added the ...