Google: Salesforce Attacks Stemmed From Third-Party App darkreadingElizabeth Montalbano, Contributing Writer
August 27, 2025

A group tracked as UNC6395 engaged in "widespread data theft" via compromised OAuth tokens from a third-party app called Salesloft Drift. A group tracked as UNC6395 engaged in "widespread data theft" …


Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks The Hacker [email protected] (The Hacker News)
August 27, 2025

The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion attacks targeting cloud environments. "Unlike traditional on-premises ransomware, where the threat …


Someone Created First AI-Powered Ransomware Using OpenAI’s gpt-oss:20b Model The Hacker [email protected] (The Hacker News)
August 27, 2025

Cybersecurity company ESET has disclosed that it discovered an artificial intelligence (AI)-powered ransomware variant codenamed PromptLock. Written in Golang, the newly identified strain uses the gpt-oss:20b model from OpenAI locally via …


Storm-0501 Hits Enterprise With ‘Cloud-Based Ransomware’ Attack darkreadingAlexander Culafi
August 27, 2025

The financially motivated threat group used cloud resources to conduct a complex, ransomware-style attack against an enterprise victim. The financially motivated threat group used cloud resources to conduct a complex, ransomware-style …


Anthropic Disrupts AI-Powered Cyberattacks Automating Theft and Extortion Across Critical Sectors The Hacker [email protected] (The Hacker News)
August 27, 2025

Anthropic on Wednesday revealed that it disrupted a sophisticated operation that weaponized its artificial intelligence (AI)-powered chatbot Claude to conduct large-scale theft and extortion of personal data in July 2025. "The …


ShadowSilk Hits 36 Government Targets in Central Asia and APAC Using Telegram Bots The Hacker [email protected] (The Hacker News)
August 27, 2025

A threat activity cluster known as ShadowSilk has been attributed to a fresh set of attacks targeting government entities within Central Asia and Asia-Pacific (APAC). According to Group-IB, nearly three dozen …


AI-Powered Ransomware Has Arrived With ‘PromptLock’ darkreadingBecky Bracken
August 27, 2025

Researchers raise the alarm that a new, rapidly evolving ransomware strain uses an OpenAI model to render and execute malicious code in real time, ushering in a new era of …


CISA and Partners Release Joint Advisory on Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage Systems AlertsCISA
August 27, 2025

CISA, along with the National Security Agency, Federal Bureau of Investigation, and international partners, released a joint Cybersecurity Advisory on People’s Republic of China (PRC) state-sponsored Advanced Persistent Threat (APT) actors targeting …


The 5 Golden Rules of Safe AI Adoption The Hacker [email protected] (The Hacker News)
August 27, 2025

Employees are experimenting with AI at record speed. They are drafting emails, analyzing data, and transforming the workplace. The problem is not the pace of AI adoption, but the lack …


Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data The Hacker [email protected] (The Hacker News)
August 27, 2025

A widespread data theft campaign has allowed hackers to breach sales automation platform Salesloft to steal OAuth and refresh tokens associated with the Drift artificial intelligence (AI) chat agent. The activity, …