Breaking News – Cyber Threats (last 6h)
Generated: 2026-01-06 07:00 PST
- How generative AI accelerates identity attacks against Active Directory
BleepingComputer • 2026-01-06 06:46 • www.bleepingcomputer.com
Generative AI is accelerating password attacks against Active Directory, making credential abuse faster and more effective. Specops Software explains how AI-driven cracking techniques exploit weak and predictable AD passwords. […]
https://www.bleepingcomputer.com/news/security/how-generative-ai-accelerates-identity-attacks-against-active-directory/ - Tool Review: Tailsnitch, (Tue, Jan 6th)
SANS ISC Diary (full) • 2026-01-06 06:23 • isc.sans.eduIn yesterday's podcast, I mentioned “tailsnitch”, a new tool to audit Tailscale configurations. Tailscale is an easy-to-use overlay to Wireguard. It is probably best compared to STUN servers in VoIP in that it allows devices behind NAT to connect directly to each other. Tailscale just helps negotiate the setup, and once the connection is established, data will flow directly between the connected devices. I personally use it to provide remote assistance to family members, and it has worked great for this purpose. Tailscale uses a “Freemium” model. Fo…
https://isc.sans.edu/diary/rss/32602 - Fake Booking Emails Redirect Hotel Staff to Fake BSoD Pages Delivering DCRat
The Hacker News • 2026-01-06 04:13 • thehackernews.com
Source: Securonix
Cybersecurity researchers have disclosed details of a new campaign dubbed PHALT#BLYX that has leveraged ClickFix-style lures to display fixes for fake blue screen of death (BSoD) errors in attacks targeting the European hospitality sector.
The end goal of the multi-stage campaign is to deliver a remote access trojan known as DCRat, according to cybersecurity company Securonix.
https://thehackernews.com/2026/01/fake-booking-emails-redirect-hotel.html - What is Identity Dark Matter?
The Hacker News • 2026-01-06 03:30 • thehackernews.com
The Invisible Half of the Identity Universe
Identity used to live in one place – an LDAP directory, an HR system, a single IAM portal.
Not anymore. Today, identity is fragmented across SaaS, on-prem, IaaS, PaaS, home-grown, and shadow applications. Each of these environments carries its own accounts, permissions, and authentication flows.
Traditional IAM and IGA tools govern only the nearly
https://thehackernews.com/2026/01/what-is-identity-dark-matter.html - VS Code Forks Recommend Missing Extensions, Creating Supply Chain Risk in Open VSX
The Hacker News • 2026-01-06 03:25 • thehackernews.com
Popular artificial intelligence (AI)-powered Microsoft Visual Studio Code (VS Code) forks such as Cursor, Windsurf, Google Antigravity, and Trae have been found to recommend extensions that are non-existent in the Open VSX registry, potentially opening the door to supply chain risks when bad actors publish malicious packages under those names.
The problem, according to Koi, is that these
https://thehackernews.com/2026/01/vs-code-forks-recommend-missing.html - Are Copilot prompt injection flaws vulnerabilities or AI limits?
BleepingComputer • 2026-01-06 03:16 • www.bleepingcomputer.com
Microsoft has pushed back against claims that multiple prompt injection and sandbox-related issues raised by a security engineer in its Copilot AI assistant constitute security vulnerabilities. The development highlights a growing divide between how vendors and researchers define risk in generative AI systems. […]
https://www.bleepingcomputer.com/news/security/are-copilot-prompt-injection-flaws-vulnerabilities-or-ai-limits/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
