‼️🚨 BREAKING: ServiceNow has been breached. Customers are reporting unauthorised access to their instances. One customer states their security team reported this vulnerability to them, and they closed the case twice, saying they had already known since the 7th of April.

Join us at #ICSSummit when Marco Ayala and Eric Forner will demonstrate how MQTT & Sparkplug B can be abused to manipulate industrial systems. See how false data, device impersonation, & broker trust can become real OT risk. Register: sans.org/u/1D4n #OTSecurity #IIoT

Gain firsthand insight into preparing for ISA/IEC 62443 and ISASecure’s ACSSA for Evaluators training. In this new blog, the author shares their experience getting ready for the IC49, 3-day training and what professionals can expect from the process.⤵️ isasecure.org/news-events/my…

Before sunrise in Normandy, thousands of flags were placed to honor thousands of lives. @DeptofWar | @USArmy | @USArmyEURAF | @18airbornecorps | @usabmc | @SETAF_Africa | @173rdAbnBde

‼️🚨 A new npm supply-chain attack compromised 57 packages across over 286 malicious versions in under 2 hours. The attackers used self-replicating malware, a new version of the Miasma worm, which also used evasion techniques to stay under the radar. The payload targets CI/CD and developer credentials, including GitHub Actions secrets, cloud credentials, Vault tokens, SSH keys, npm and GitHub tokens, and password-manager stores. This variant also injects AI coding assistant config files at `.claude`, `.cursor`, `.gemini`, and `.vscode` paths, a separate persistence and repo-poisoning angle.