Security Boulevard

Top Security Incidents of 2025: Chrome Browser 0-Day Vulnerability Exploitation

Background In March 2025, cybersecurity researchers disclosed a highly sophisticated targeted attack campaign named “Operation ForumTroll.” Orchestrated by an unidentified state-sponsored APT group, ...
Security Boulevard

The Agentic Virus: How AI Agents Become Self-Spreading Malware

In my previous post, I walked through how disconnected MCP servers and AI agents create a growing blind spot in enterprise ...

Microsoft Office Zero-Day Exploited Days After Emergency Patch, Update ASAP

A hole in Microsoft Office is being exploited by bad actors, including Russian hackers targeting Ukraine's government.
The Register on MSN

Russia-linked APT28 attackers already abusing new Microsoft Office zero-day

Ukraine’s CERT says the bug went from disclosure to active exploitation in days Russia-linked attackers are already exploiting Microsoft's latest Office zero-day, with Ukraine's national cyber defense ...
CSOonline

Researchers warn of long‑running FortiSIEM root exploit vector as new CVE emerges

A critical command injection issue in Fortinet FortiSIEM has been disclosed along with public exploit code, and researchers claim attackers could have been remotely achieving unauthenticated root ...
Bleeping Computer

Cisco warns of Identity Service Engine flaw with exploit code

Cisco has patched a vulnerability in its Identity Services Engine (ISE) network access control solution, with public proof-of-concept exploit code, that can be abused by attackers with admin ...
PC Gamer

Action RPG players will exploit anything in the name of efficiency, which is why Path of Exile 2 players are locking themselves in the campaign for profit

Third Person Shooter I wish I wasn't missing out on new quests in Arc Raiders just because I'm not willing to grind the old ones every two months Third Person Shooter Arc Raiders dishes out a hotfix, ...
Bloomberg L.P.

North Korea Suspected of $30 Million Crypto Hack, Yonhap Says

North Korean hacking group Lazarus is suspected of being behind an exploit that saw 45 billion won (about $30 million) drained from South Korea’s largest crypto exchange Upbit on Thursday, Yonhap News ...
ZDNet

Use AI browsers? Be careful. This exploit turns trusted sites into weapons - here's how

Researchers disclosed a HashJack attack that manipulates AI browsers. Cato CTRL examined Comet, Copilot for Edge, and Gemini for Chrome. Could lead to data theft, phishing, and malware downloads.
GamesRadar+

Arc Raiders door exploit makes keycards useless, and players demand the banhammer for those using it: "The sooner Embark bans people doing this, the sooner it will stop"

Third Person Shooters Arc Raiders lead says a "prominent professor in neurology" encouraged him to submit the extraction shooter to science Third Person Shooters Arc Raiders devs rush to fix ...
GameSpot

Battlefield 6 And Redsec 1.1.1.5 Update Patches Out An Infamous Exploit

GameSpot may get a commission from retail offers. Battlefield 6 and the battle royale game Redsec are getting a new update on November 11, featuring a number of quality-of-life updates and bug fixes.