@SecurityWeek profile picture
SecurityWeek @SecurityWeek

#Cybersecurity News, Threats, Insights and Expert Analysis: #SCADA #Infosec #ICS Coverage

Joined May 2009
  • Tweets 54,397
  • Following 2,766
  • Followers 227,887
789 Photos and videos
Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls securityweek.com/anthropic-s…

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Anthropic takes Fable 5 and Mythos 5 offline to comply with a directive from the Trump administration to prevent use by foreign nationals.

securityweek.com
1
4
7
1,169
NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks securityweek.com/npm-12-will…

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

By default, npm install will no longer execute scripts from dependencies, unless explicitly allowed.

securityweek.com
1
2
1,032
Iranian Cyber Group Handala Claims Cal Water Hack securityweek.com/iranian-cyb…

Iranian Cyber Group Handala Claims Cal Water Hack

The hackers published 5GB of data, including customer personal information and credentials for the RTKBase platform.

securityweek.com
4
5
1,114
NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks securityweek.com/npm-12-will…

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

By default, npm install will no longer execute scripts from dependencies, unless explicitly allowed.

securityweek.com
2
7
1,200
Chrome 149 Update Patches 28 Vulnerabilities securityweek.com/chrome-149-…

Chrome 149 Update Patches 28 Vulnerabilities

The browser refresh resolved critical and high-severity security defects, including a dozen use-after-free bugs.

securityweek.com
1
1
972
Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls securityweek.com/anthropic-s…

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Anthropic takes Fable 5 and Mythos 5 offline to comply with a directive from the Trump administration to prevent use by foreign nationals.

securityweek.com
1
6
968
Ivanti Sentry Exploitation Attempts Hitting Honeypots securityweek.com/ivanti-sent…

Ivanti Sentry Exploitation Attempts Hitting Honeypots

The critical-severity OS command injection vulnerability allows attackers to execute arbitrary code with root privileges.

securityweek.com
1
1
954
Anthropic Disputes Fable 5 AI Jailbreak securityweek.com/anthropic-d…

Anthropic Disputes Fable 5 AI Jailbreak

An AI hacker claims to have achieved a prompt-based jailbreak shortly after Fable 5’s launch, but Anthropic says it’s not a real jailbreak.

securityweek.com
1
3
837
Industry Reactions to Claude Fable 5: Feedback Friday securityweek.com/industry-re…
688
Iranian Cyber Group Handala Claims Cal Water Hack securityweek.com/iranian-cyb…

Iranian Cyber Group Handala Claims Cal Water Hack

The hackers published 5GB of data, including customer personal information and credentials for the RTKBase platform.

securityweek.com
3
3
846
Ivanti Sentry Exploitation Attempts Hitting Honeypots securityweek.com/ivanti-sent…

Ivanti Sentry Exploitation Attempts Hitting Honeypots

The critical-severity OS command injection vulnerability allows attackers to execute arbitrary code with root privileges.

securityweek.com
1
4
1,000
Chrome 149 Update Patches 28 Vulnerabilities securityweek.com/chrome-149-…

Chrome 149 Update Patches 28 Vulnerabilities

The browser refresh resolved critical and high-severity security defects, including a dozen use-after-free bugs.

securityweek.com
1
6
1,055
Anthropic Disputes Fable 5 AI Jailbreak securityweek.com/anthropic-d…

Anthropic Disputes Fable 5 AI Jailbreak

An AI hacker claims to have achieved a prompt-based jailbreak shortly after Fable 5’s launch, but Anthropic says it’s not a real jailbreak.

securityweek.com
2
912
Google Confirms Exploitation of Oracle PeopleSoft Zero-Day CVE-2026-35273 by ShinyHunters securityweek.com/google-conf…

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Oracle has mitigated CVE-2026-35273, but it has not publicly confirmed the vulnerability’s in-the-wild exploitation.

securityweek.com
2
2
4
995
Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks securityweek.com/oracle-addr…

Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks

Oracle has released a patch for CVE-2026-35273, but it has not said whether it’s a zero-day exploited in ShinyHunters attacks.

securityweek.com
1
2
3
957
CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk securityweek.com/cisa-direct…

CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk

The new BOD 26-04 requires agencies to review and update vulnerability management policies with a focus on KEV catalog entries.

securityweek.com
1
3
1,023
Siemens Says Desigo CC Files Flagged as Malware by Security Engines securityweek.com/siemens-say…

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

A PowerShell script included in patch files appears to be triggering false positives by multiple security engines.

securityweek.com
1
2
2
1,045
Hackers Exploit Langflow Vulnerability for Remote Code Execution securityweek.com/hackers-exp…

Hackers Exploit Langflow Vulnerability for Remote Code Execution

Disclosed in March, the security defect enables unauthenticated attackers to write files to arbitrary locations on the system.

securityweek.com
1
3
1,055
FBI Seizes 13 Websites That Officials Say Were Used by China to Target and Recruit US Workers securityweek.com/fbi-seizes-…

FBI Seizes 13 Websites That Officials Say Were Used by China to Target and Recruit US Workers

The 13 websites purported to be affiliated with consulting companies that advertised job openings for current and former holders of security clearances

securityweek.com
4
5
1,073
Splunk, Palo Alto Networks Patch Severe Vulnerabilities securityweek.com/splunk-palo…

Splunk, Palo Alto Networks Patch Severe Vulnerabilities

The security defects could allow attackers to create or modify arbitrary files and access and modify protected resources.

securityweek.com
5
988
Load more