Major Incidents or Breaches

  • Over 600 Laravel applications have been exposed to remote code execution (RCE) due to leaked APP_KEYs found on GitHub, enabling attackers to compromise affected deployments.
  • Hackers are actively exploiting a critical RCE vulnerability in Wing FTP Server, following the public release of technical details about the flaw.
  • Four individuals have been arrested in connection with the Scattered Spider hacking group, which has been implicated in a series of high-profile attacks.

Newly Discovered Vulnerabilities

  • A new attack variant, GPUHammer, targets NVIDIA GPUs by exploiting a RowHammer-style vulnerability, potentially degrading the performance of AI models. NVIDIA has advised customers to enable System-level Error Correction Codes (ECC) to mitigate risk.

Notable Threat Actor Activity

  • Arrests have been made relating to the Scattered Spider group, known for sophisticated cyber intrusions and extortion campaigns.
  • A Russian professional basketball player has been arrested on ransomware-related charges.

Trends, Tools, or Tactics of Interest

  • The Grok-4 large language model (LLM) by xAI was successfully jailbroken within two days of release, highlighting ongoing challenges in securing generative AI models against prompt injection and bypass techniques.
  • There is a reported surge in AI-generated child abuse imagery circulating online, indicating increased abuse of generative AI tools for illicit content production.