Google Workspace’s continuous approach to mitigating indirect prompt injections
Posted by Adam Gavish, Google GenAI Security Team Indirect prompt injection (IPI) is an evolving threat vector targeting users of complex AI applications wit...
Conti
Ransomware
Highly organized RaaS that leaked its own playbook in 2022. Responsible for attacks on the Irish Health Service and Costa Rican government.
Also known as: conti ransomware, conti gang, conti malware
AI Intelligence Brief
Related YARA Rules View all on YARA Rules page →
90-Day Activity
Last 90 Days (38)
Last 90 Days
All Time
Campaign combines WhatsApp with legit cloud platforms to deliver malicious VBS files
Attackers continue to evade defenders by using legitimate platforms like AWS and Microsoft utilities.
North Dakota water treatment plant reports March ransomware attack
A water treatment plant in the city of Minot, North Dakota, was hit with ransomware but city officials said it continues to operate normally.
Joint offering combines CrowdStrike's Falcon with HCLTech's AI Force
CrowdStrike and HCLTech have expanded their partnership with a new continuous threat exposure management service combining CrowdStrike's Falcon platform with...
FBI warns Americans about data risks in foreign-developed mobile apps
The FBI's public service announcement details how certain mobile apps may continuously collect user data, even when permissions are granted only for active use.
New Venom Stealer MaaS Platform Automates Continuous Data Theft
Venom Stealer malware-as-a-service automates ClickFix social engineering, credential and crypto exfiltration
Closing the Gap by Enhancing Visibility and Mitigating Risks
Secure your UK public sector digital estate. Cortex Xpanse delivers active External Attack Surface Management (EASM) with continuous monitoring, NCSC alignme...
Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Chain Attack on Security Infrastructure
TeamPCP continues its string of supply chain attacks, and announces a partnership with Vect ransomware group. The post Weaponizing the Protectors: TeamPCP’s ...
Venom Stealer Raises Stakes With Continuous Credential Harvesting
Licensed malware with built-in persistence and automation enables attackers to continuously siphon credentials, session data, and cryptocurrency assets. The ...
Fortinet hit by another exploited cybersecurity flaw
Yet another critical flaw in a Fortinet product has come to light as attackers continue to target the company, this time by actively exploiting a critical SQ...
CEO: AI agents require continuous supervision
The rise of autonomous systems has created a critical need to secure AI agent identities with the same rigor used for human employees, Ping Identity CEO Andr...
European Commission data stolen in a cyberattack on the infrastructure hosting its web sites
The European Commission is continuing to investigate the theft of data from its cloud infrastructure earlier this week. On Thursday, the Commission revealed ...
Critical Langflow AI bug exploited within 20 hours added to CISA list
Experts warn that the timeframe between disclosure and exploitation will continue to shrink, so teams must prepare.
New AITM phishing wave hijacks TikTok Business accounts
A new AITM phishing campaign targets TikTok Business accounts to hijack them for malvertising, continuing tactics seen in earlier Google-themed scams. Push S...
Identity at RSAC 2026: Continuous, AI-ready and quantum-safe
Identity talks in San Francisco focused on new realities challenging traditional authentication schemes.
TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware
TeamPCP continues is supply chain compromise rampage, with telnyx on PyPI being the latest maliciously modified package. What happened?
AI frenzy feeds credential chaos, secrets spread through code, tools, and infrastructure
Code keeps moving through pipelines, and credentials continue to surface alongside it. GitGuardian’s State of Secrets Sprawl 2026 puts the count at 28.
Intruder's Chris Wallis on confidence, AI and the future of exposure management
Chris Wallis explores whether AI can bridge the divide between finding vulnerabilities and understanding real-world attack context as exploit windows continu...
Resilience's Travis Wong on making cyber risk continuous, quantified, and actionable
Travis Wong explores why measuring risk in dollars changes the conversation at the board level.
DataBahn brings AI-driven intelligence into the security pipeline
DataBahn.ai has announced Autonomous In-Stream Data Intelligence (AIDI), a new operating model for security data pipelines in which data is continuously inte...