Daily Recap, Agentic ransomware techniques were documented for the first time as Sysdig tracked JADEPUFFER, while prompt injection attacks demonstrated how AI agents can be manipulated into making crypto payments. North Korean actors continued supply-chain pressure by targeting open source developers, and researchers also flagged trojanized PoC repos and malicious PyPI packages. #JADEPUFFER #Sysdig #NorthKorea #PoC #PyPI
AI & Ransomware
- Agentic ransomware was documented for the first time as Sysdig tracked JADEPUFFER, while prompt injection attacks showed how AI agents can be manipulated into making crypto payments and browser-only ransomware techniques continue to evolve. β Agentic Ransomware, Prompt Injection, Weekly Recap
- AI-driven attack trends are also pushing defenders to rethink prioritization, with one analysis arguing that finding vulnerabilities is no longer the hard part. β AI Prioritization
Supply Chain & Open Source
- North Korean hackers targeted open source developers in supply-chain attacks, highlighting continued abuse of trusted ecosystems. β North Korea Supply, Weekly Recap
- Researchers also flagged trojanized PoC repos and malicious PyPI packages as part of a broader supply-chain abuse wave. β Supply Chain Recap
Vulnerabilities & Exploits
- A maximum-severity Adobe ColdFusion flaw is now being actively exploited in the wild, raising urgent patching concerns. β ColdFusion Flaw
- A proof-of-concept exploit was released for the Linux βBad Eppolβ root privilege escalation vulnerability, increasing the risk of weaponization. β Bad Eppol
- Apple reportedly changed its long-standing patch policy to move faster in response to AI-era security pressures. β Apple Patches
Malware & Tradecraft
- The weekly threat roundup tracked emerging malware families including BusySnake, MarkiRAT, Glitch SPY, EKZ Stealer, and Umbrij, along with BYOVD chains that disable defenses. β Threat Recap
- Attackers are increasingly abusing browser extensions and βfree VPNβ lures to steal clipboard data and hijack sessions. β Extension Abuse
Security Research & Tools
- Flipper Zero firmware development is still advancing with help from the community, showing continued interest in the hardware security tool. β Flipper Zero