North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets https://firewalls.firm.in/wp-content/uploads/2026/07/npms-malware.jpg Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to facilitate remote access and data theft. According to JFrog, the packages “rollup-packages-polyfill-core” and “rollup-runtime-polyfill-core” mimic the legitimate “rollup-plugin-polyfill-node” project, down to the description, ...
Read More »Vulnerabilities & Exploits
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack https://firewalls.firm.in/wp-content/uploads/2026/07/ai-agent-ransomware.jpg Security firm Sysdig says it has found what it believes is the first ransomware attack run from start to finish by an AI agent. Its Threat Research Team calls the operator JADEPUFFER and says a large language model handled the whole job: breaking in, stealing credentials, moving deeper into the network, ...
Read More »Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input
Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input https://firewalls.firm.in/wp-content/uploads/2026/06/pp-ai.jpg Swati KhandelwalJun 29, 2026Browser Security / Web Security Microsoft has found a malicious Chrome extension that posed as the AI search engine Perplexity and quietly logged what people searched for. It routed every query and every character typed into the address bar through an attacker-controlled server before redirecting users ...
Read More »ServiceNow data breach: Software bug exposed customer data to internet access
ServiceNow data breach: Software bug exposed customer data to internet access https://etimg.etb2bimg.com/thumb/msid-131675065,imgsize-2031894,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/servicenow-data-breach-software-bug-exposed-customer-data-to-internet-access.jpg Cloud technology giant ServiceNow has notified some of its customers that a software bug on its platform was allowing anyone on the internet to access their data. According to a report in TechCrunch, a knowledge base article, which ServiceNow has hidden behind a login wall but has been ...
Read More »Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials
Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials https://firewalls.firm.in/wp-content/uploads/2026/06/cyberattack.jpg Ravie LakshmananJun 27, 2026Messaging Security / Cyber Espionage The Security Service of Ukraine (SSU) said it, together with the U.S. Federal Bureau of Investigation (FBI), uncovered a long-running campaign orchestrated by Russian intelligence services to break into the messaging accounts of government officials, military personnel, politicians, and ...
Read More »India’s Tata Electronics hit by cyber breach claiming to expose Apple, Tesla trade secrets
India’s Tata Electronics hit by cyber breach claiming to expose Apple, Tesla trade secrets https://etimg.etb2bimg.com/thumb/msid-131924293,imgsize-236570,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/indias-tata-electronics-hit-by-cyber-breach-claiming-to-expose-apple-tesla-trade-secrets.jpg Tata Electronics said on Monday it had detected a recent “cybersecurity incident”, after researchers said World Leaks posted purported component design and specification papers of Apple and Tesla, both customers of the Indian group. The ransomware group has posted more than 200,000 files on the ...
Read More »Surviving the Mythos Era: Richard Bejtlich on the Case for NDR
Surviving the Mythos Era: Richard Bejtlich on the Case for NDR https://firewalls.firm.in/wp-content/uploads/2026/06/corelight.jpg Despite the abundance of telemetry at analysts’ disposal, many security operations teams struggle to answer a few basic questions during incident investigation: What happened? What evidence do we have? How do we know we’re seeing it all, in context? Answering these questions requires teams to go beyond alerts, ...
Read More »When the breach doesn’t happen, the real warning begins
When the breach doesn’t happen, the real warning begins https://etimg.etb2bimg.com/thumb/msid-131169830,imgsize-6906,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/when-the-breach-doesnt-happen-the-real-warning-begins.jpg In cybersecurity, the incident that makes headlines is usually the one that succeeds. The ransomware spreads, the systems go down, the data leaks, and the postmortem begins. But some of the most important warnings arrive earlier, in quieter form. A phishing payload slips through but gets stopped on execution. A ...
Read More »AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It.
AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It. https://firewalls.firm.in/wp-content/uploads/2026/06/watch.jpg AI-driven exploitation timelines are rapidly shrinking, and they are not going to stop shrinking. Vulnerabilities are being discovered, reproduced, and weaponized faster than ever in the history of enterprise security. As a result, the window between a vulnerability being disclosed and indiscriminate exploitation observed across the internet is ...
Read More »AI-related data breaches surging
AI-related data breaches surging https://etimg.etb2bimg.com/thumb/msid-131215633,imgsize-57236,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/ai-related-data-breaches-surging.jpg Hackers are increasingly using AI to detect software vulnerabilities, which has shortened the time that targets have to respond to threats, Verizon said in an annual report tracking data breaches. Verizon said using software flaws in data surpassed stolen credentials for the first time. It said in a review of more than 31,000 incidents, 31% ...
Read More »
Firewall Security Company India Complete Firewall Security Solutions Provider Company in India











