Security Boulevard

Microsoft Expands its Bug Bounty Program to Include Third-Party Code

In a nod to the evolving threat landscape that comes with cloud computing and AI and the growing supply chain threats, Microsoft is broadening its bug bounty program to reward researchers who uncover ...
Arabian Post on MSN

EtherRAT campaign exposes React server security gaps

A sophisticated cyber-espionage campaign attributed to North Korean state-linked hackers has exploited a critical vulnerability in React Server Components to deploy a stealthy remote access trojan ...
The Hacker News

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

PyStoreRAT spreads via fake GitHub tools using small Python or JavaScript loaders to fetch HTA files and install a modular ...

Out-of-state lenders move in on Massachusetts SBA business

From California to Utah, Massachusetts is becoming a higher priority for out-of-state lenders.
The Hacker News

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

The React team has released fixes for two new types of flaws in React Server Components (RSC) that, if successfully exploited, could result in denial-of-service (DoS) or source code exposure.

Germany summons Russian ambassador over increase in 'hybrid' attacks, including election interference

The German government has accused Russia of carrying out repeated hostile actions against Germany, including acts of sabotage, cyberattacks and disinformation campaigns.