Cyber Daily

Proofpoint launches AI-driven archiving platform aimed at SMB compliance

New Nuclei Discovery and Archive Suite targets smaller organisations struggling with regulatory oversight across digital ...
Cyber Daily

WA government’s Microsoft 365 issues led to $71k being stolen, exposure of child data

The data breach on the West Australian government that resulted in the data of children being exposed, as well as an invoice fraud incident that led to $71,000 being stolen, reportedly came from the ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
InfoQ

AWS Launches Managed Openclaw on Lightsail Amid Critical Security Vulnerabilities

AWS launched managed OpenClaw on Lightsail for AI agent deployment while security concerns mount. The 250k-star GitHub project is affected by CVE-2026-25253, which enables one-click RCE, with 17,500+ ...

Google fixes two new Chrome zero-days exploited in attacks

Google has released emergency security updates to patch two high-severity Chrome vulnerabilities exploited in zero-day attacks.
TMCnet

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...