Daily Recap, Two key themes dominated today: attackers are targeting AI and software supply chains, including Ghostcommit’s prompt-injection images and a GitHub compromise at Injective Labs that pushed wallet-key-stealing npm packages. Critical patching also remains urgent, with vulnerabilities in Zimbra, ShareFile, U-Boot, and Gitea along with broader pressure on healthcare, privacy, and enforcement efforts.
#Ghostcommit #InjectiveLabs #npm #Zimbra #Progress #ShareFile #U-Boot #Gitea #Ryuk #EuropeanParliament #CSAM #CISA #Odido #DHS #Adobe
AI & Supply Chain
- Ghostcommit hides prompt-injection payloads in images to trick AI agents into leaking secrets – Ghostcommit
- A GitHub compromise at Injective Labs pushed wallet-key-stealing npm packages, underscoring the risk of software supply-chain abuse – Supply Chain
Critical Vulnerabilities
- A critical Zimbra flaw could let crafted emails execute malicious code in user sessions, prompting urgent patching – Zimbra Flaw
- Progress told ShareFile customers to shut down Storage Zone Controllers and servers over a credible security threat – ShareFile Alert, ShareFile Warning
- New U-Boot flaws, including 6 additional bugs, could enable stealthy firmware attacks, device crashes, or code execution at boot – U-Boot Bugs, Boot Bugs
- Hackers are exploiting a critical auth-bypass flaw in a Gitea Docker image to gain unauthorized access – Gitea Exploit
- Fresh bugs in ATM crypto software could let attackers turn payment systems into a jackpot or a bust – ATM Bugs
Ransomware & Justice
- An Armenian national pleaded guilty to Ryuk ransomware attacks, while a separate US case said a Ryuk member faces up to 15 years in prison – Ryuk Plea, Ryuk Sentence
- A third US security expert was sentenced for helping a ransomware gang, as Canada also moved to disrupt ransomware operations – Ransomware Sentence, Canada Ops
Data & Privacy
- Cybercriminals are increasingly targeting healthcare organizations as attacks surge across the sector – Healthcare Surge
- The European Parliament revived a law that would let big tech scan for CSAM, reigniting privacy concerns in Europe – CSAM Scans
- After the Supreme Court reined in location tracking, license-plate cameras may become the next privacy battleground in the US – Plate Cameras
- CISA is working to address fallout from a major May credential leak, highlighting ongoing identity-security risks – CISA Leak
Crime & Breaches
- Dutch police suspect local hackers were involved in the Odido breach – Odido Breach
- A money launderer was accused of stealing seized crypto while in prison, adding another twist to digital-asset crime – Crypto Theft
Industry & Enforcement
- In other security news, the DHS database was hacked and Adobe boosted its patch cadence as defenders respond to a fast-moving threat landscape – Security Roundup