AFC Ajax, the Dutch football club from Amsterdam, disclosed that an unknown hacker gained access to parts of its IT systems and obtained the email addresses of a few hundred people. The hack exploited vulnerabilities in Ajax's app and website, including exposed APIs and shared access keys. The club stated that names, email addresses, and dates of birth were accessed for fewer than 20 individuals subject to a stadium ban. READ MORE...
The European Commission, the European Union's main executive body, is investigating a security breach after a threat actor gained access to its Amazon cloud infrastructure. Although the EU's executive cabinet has yet to disclose the incident publicly, BleepingComputer has learned that the breach affected at least one account used to manage the compromised cloud infrastructure. Sources familiar with the incident have told BleepingComputer that the attack was quickly detected. READ MORE...
Automotive security has made great strides over the past 10 years, ever since a pair of researchers first demonstrated they could remotely take control of a Jeep Cherokee. However, threats to vehicles have also heightened, thanks to the increasingly connected nature of vehicles, said Kamel Ghali, vice president of the nonprofit Car Hacking Village, and Julio Padilha, chief information security officer for Volkswagen & Audi South America, at RSAC Conference this week. READ MORE...
TP-Link has released patches for four high-severity vulnerabilities in Archer NX router models that could be exploited to fully compromise devices. The bugs, tracked as CVE-2025-15517, CVE-2025-15518, CVE-2025-15519, and CVE-2025-15605, were resolved in fresh firmware releases for the Archer NX200, NX210, NX500, and NX600 router models. The first of the flaws, CVE-2025-15517, allows attackers to bypass authentication and perform actions such as firmware uploads or configuration operations. READ MORE...
A previously undocumented macOS infostealer has surfaced during our routine threat hunting. We initially tracked it as NukeChain, but shortly before publication, the malware's operator panel became publicly visible, revealing its real name: Infiniti Stealer. This malware is designed to steal sensitive data from Macs. It spreads through a fake CAPTCHA page that tricks users into running a command themselves: a technique known as ClickFix. READ MORE...
A fake website impersonating Avast antivirus is tricking people into infecting their own computers. The site looks legitimate, runs what appears to be a virus scan, and claims your system is full of threats. But the results are fake: when you're prompted to "fix" the problem, the download you're given is actually Venom Stealer-a type of malware designed to steal passwords, session cookies, and cryptocurrency wallet data. READ MORE...
A March 23 decision by the Federal Communications Commission (FCC) to include foreign made routers on its national security risk list could ironically leave US consumers and small business more vulnerable over the long term. The FCC's move essentially prohibits the import of new models of consumer grade routers made by manufacturers outside the US. Consumers and businesses that are already using foreign made routers can continue using them. READ MORE...
Computer security boffins have conducted an analysis of 10 million websites and found almost 2,000 API credentials strewn across 10,000 webpages. The researchers detail their findings in a preprint paper titled "Keys on Doormats: Exposed API Credentials on the Web," and say they conducted the study because much of the attention on exposed credentials has focused on scouring code repositories and source code. READ MORE...
The US Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2026-33017, a recently disclosed code injection vulnerability in Langflow, an open-source framework for building AI agents and workflows, and CVE-2026-33634, an embedded malicious code vulnerability in Aqua Security's Trivy security scanner. US federal civilian agencies are required to address the flaws by April 8 and 9, respectively. READ MORE...
CISA issued an advisory on Thursday to inform organizations in the US about a critical vulnerability recently discovered in PTC's Windchill product lifecycle management (PLM) software. The vendor has yet to release patches for the flaw and says there is no evidence of in-the-wild attacks, but the response triggered by the disclosure of the vulnerability in Germany suggests that its exploitation is imminent. READ MORE...
The post-quantum future appears to be on its way, and some believe that future may be as soon as a few years out. Google on Wednesday announced that it would aim to integrate post-quantum cryptography (PQC) into its systems, products, and services by the end of 2029. The migration timeline was announced in a blog post authored by Heather Adkins, vice president of security engineering, and Sophie Schmieg, senior staff cryptography engineer at Google. READ MORE...