The University of Phoenix (UoPX) has joined a growing list of U.S. universities breached in a Clop data theft campaign targeting vulnerable Oracle E-Business Suite instances in August 2025. Founded in 1976 and headquartered in Phoenix, Arizona, UoPX is a private for-profit university with nearly 3,000 academic staff and over 100,000 enrolled students. The university disclosed the data breach on its official website on Tuesday. READ MORE...
North Korea's 'Contagious Interview' campaign to target job seekers has expanded yet again, this time with a persistent npm package-poisoning game that runs like a well-oiled machine. Threat actors have delivered more than 197 malicious npm packages with more than 31,000 collective downloads since Oct. 10, as part of ongoing state-sponsored activity to lure and compromise software development professionals. READ MORE...
Researchers have unraveled a malware campaign that really did play the long game. After seven years of behaving normally, a set of browser extensions installed on roughly 4.3 million Chrome and Edge users' devices suddenly went rogue. Now they can track what you browse and run malicious code inside your browser. The researchers found five extensions that operated cleanly for years before being weaponized in mid-2024. READ MORE...
The second Shai-Hulud attack last week exposed around 400,000 raw secrets after infecting hundreds of packages in the NPM (Node Package Manager) registry and publishing stolen data in 30,000 GitHub repositories. Although just about 10,000 of the exposed secrets were verified as valid by the open-source TruffleHog scanning tool, researchers at cloud security platform Wiz say that more than 60% of the leaked NPM tokens were still valid as of December 1st. READ MORE...
India's Civil Aviation Minister has revealed that local authorities have detected GPS spoofing and jamming at eight major airports. In an written answer presented to India's parliament, Minister Ram Mohan Naidu Kinjarapu said his department is aware of "recent" spoofing incidents in Delhi and other incidents since 2023. His response confirmed recent incidents at Delhi's Indira Gandhi International Airport, plus "regular" reports of spoofing since 2023 at seven other airports. READ MORE...
Three years into the "AI future," researchers' creative jailbreaking efforts never cease to amaze. Researchers from the Sapienza University of Rome, the Sant'Anna School of Advanced Studies, and large language model (LLM) safety and compliance consultancy Dexai showed how one can jailbreak leading AI models by framing prompts as a rhyming poem. The group published their findings in a white paper Nov. 19. READ MORE...
Threat actors have been hacking WordPress websites by exploiting a recent King Addons for Elementor vulnerability, Defiant reports. Tracked as CVE-2025-8489 (CVSS score of 9.8), the critical-severity bug is described as a privilege escalation issue that allows attackers to obtain administrative privileges. The vulnerability impacts versions 24.12.92 to 51.1.14. King Addons for Elementor's maintainers patched the issue in version 51.1.35 of the plugin, which was released on September 25. READ MORE...
Security researchers warn that two recently disclosed vulnerabilities in Fortinet FortiWeb can be exploited in attacks targeting earlier, unsupported versions of the web application firewall product. Fortinet in November confirmed that a relative path traversal vulnerability, tracked as CVE-2025-64446, and an operating system command injection vulnerability, tracked as CVE-2025-58034, were being exploited in the wild. READ MORE...