VulnHub

A recent report from Verizon revealed a significant rise in the number of security breaches caused by exploited vulnerabilities last year. Many organizations are failing to address these critical defects, leaving their systems open to attacks. The report emphasizes that these vulnerabilities have become the primary entry point for cybercriminals, meaning that companies need to prioritize patching and updates to protect their systems. This trend points to a concerning oversight in cybersecurity practices across various industries, where outdated software and unaddressed vulnerabilities can lead to severe data breaches and financial loss. As attackers continue to exploit these weaknesses, the urgency for organizations to strengthen their security measures has never been greater.

In 2025, the FBI reported that Americans lost over $388 million to scams involving cryptocurrency ATMs, also known as crypto kiosks or Bitcoin ATMs. These scams typically involve fraudsters tricking victims into sending money to them through these machines, often under the guise of legitimate transactions. The rise in these scams highlights a growing concern as more people turn to cryptocurrency for transactions. The FBI's warning emphasizes the need for users to be cautious and verify any transaction before proceeding, especially given the irreversible nature of cryptocurrency transactions. This situation not only affects individual victims but also raises questions about the security measures in place at these ATMs and the responsibility of operators to protect users.

A new wave of malware, dubbed Mini Shai-Hulud, is compromising hundreds of npm packages, targeting the open-source software community. This malicious software is stealing publishing tokens, which can allow attackers to take control over the affected packages. Additionally, it installs OS-level backdoors and embeds itself in developer tools and continuous integration (CI) pipelines. This incident puts many developers and organizations at risk, as it can lead to compromised software being distributed widely. Developers using npm packages need to be vigilant and ensure they are not using compromised versions to protect their projects and systems.

Today, attackers uploaded over 600 malicious packages to the Node Package Manager (npm) as part of a campaign known as Shai-Hulud. These packages are designed to compromise systems that use npm for software development, potentially allowing attackers to execute harmful code or steal sensitive information. Developers and companies that rely on npm for their projects are at risk, as these malicious packages could be unintentionally downloaded and integrated into legitimate applications. This incident serves as a reminder for users to be vigilant when selecting packages and to verify their sources before installation. Security researchers are urging developers to audit their dependencies and monitor for any suspicious activity in their projects.

7-Eleven has confirmed that it suffered a data breach last month, which was claimed by the ShinyHunters hacking group. This breach raises concerns about the security of customer data, as the attackers are known for targeting organizations to steal and sell sensitive information. While 7-Eleven has not disclosed specific details regarding the extent of the breach or the types of data compromised, the incident highlights ongoing vulnerabilities in retail cybersecurity. Customers and employees alike may be at risk, and the incident underscores the need for stronger security measures in the retail sector. As investigations continue, affected individuals should remain vigilant about potential phishing attempts or other follow-up attacks.

A recent cybersecurity incident has revealed that attackers compromised GitHub Actions workflows to steal Continuous Integration/Continuous Deployment (CI/CD) credentials. The attackers used a tactic known as 'imposter commit,' which involved changing all existing tags in the repository to redirect them to a malicious commit. This manipulation allowed the attackers to gain unauthorized access to sensitive credentials that could be used to deploy malicious code or access private systems. Developers and organizations using GitHub Actions should be particularly vigilant, as this incident could expose them to further attacks if their credentials are misused. It emphasizes the need for stricter security measures around CI/CD pipelines to prevent similar compromises in the future.

A recent report from Digital.ai indicates that a staggering 87% of mobile applications faced attacks over the past year. This trend highlights the growing risks associated with mobile app security, as attackers increasingly target vulnerabilities in software builds. The findings suggest that a wide range of apps are at risk, impacting both developers and users. Companies need to prioritize securing their applications to protect sensitive data and maintain user trust. Given the frequency of these attacks, it's crucial for organizations to regularly assess and enhance their security measures.

Recent reports suggest that Iranian hackers may have accessed automatic tank gauge systems at gas stations across the United States. These systems were reportedly exposed online without proper password protection, making them vulnerable to unauthorized access. This breach raises concerns about the safety and security of fuel supplies, as attackers could potentially manipulate fuel levels or disrupt operations. The incident highlights the risks associated with inadequate cybersecurity measures in critical infrastructure. As gas stations rely on these systems for inventory management, any compromise could lead to significant operational challenges and public safety issues.