NAIC BREACH: SHINYUNTERS STEALS PUBLIC DATA VIA PEOPLESOFT ZERO-DAY
■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE
The National Association of Insurance Commissioners confirmed that the ShinyHunters extortion group breached its systems through a zero-day vulnerability in Oracle PeopleSoft. The attackers accessed only publicly available data, outdated logs, and configuration files.
■ MORE FROM THE SECURITY DESK
Artificial intelligence discovered a critical security vulnerability in Linux kernel code that human developers overlooked for over a decade. The bug could allow unauthorized root access to systems.
Researchers have demonstrated a new attack called 'Ghostcommit' that hides prompt injections in PNG files to fool AI code reviewers and agents into exposing repository secrets.
A 34-year-old Armenian man pleaded guilty to hacking U.S. companies and deploying the Ryuk ransomware. He faces up to 15 years in prison.
Australia's eSafety watchdog will investigate whether major adult websites are allowing users to bypass age verification requirements using virtual private networks (VPNs). The probe follows new regulations introduced in March requiring age checks on adult content.