Cybercrime service disrupted for abusing Microsoft platform to sign malware

Microsoft says it has disrupted a malware-signing-as-a-service (MSaaS) operation that abused the company's Artifact Signing ...

Windows BitLocker zero-day gives access to protected drives, PoC released

A cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities ...

Two Unpatched Windows Exploits Target BitLocker, SYSTEM Access

Two unpatched Windows exploit PoCs target BitLocker protections and privilege controls after Microsoft’s May Patch Tuesday ...

OpenAI And 1Password Bring Password Security To Codex

OpenAI and 1Password unveil a partnership that will provide Codex with secure access to credentials as part of new approach ...

YellowKey Tool Bypasses Windows 11 BitLocker Using Only a USB Stick

Nightmare-Eclipse, the researcher known for disclosing three recent Windows Defender exploits, reveals that BitLocker can be defeated with a USB stick.
Nextgov

Microsoft disrupts cybercrime service offering malware disguised as legitimate software

The downstream impact of that service’s operations “has resulted in attacks against a broad range of industry sectors” in the ...
The Hacker NewsOpinion

ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories

Weekly ThreatsDay Bulletin: supply chain attacks, fake support lures, AI tampering, data leaks, ransomware, and exploited ...
Tech Times

Shannon Lite v1.2.0 on Claude Opus 4.7: Anthropic’s New Cyber Safeguards Require Pentesters to Enroll Before Scans

Shannon Lite, the autonomous white-box penetration testing tool built by San Francisco-based Keygraph, shipped version 1.2.0 ...