CISA Adds 8 Exploited Flaws to KEV Catalog — The Hacker News

CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including a critical SD-WAN flaw actively exploited in attacks. U.S. government agencies have been given a four-day deadline to secure their systems against these vulnerabilities. This addition underscores the importance of timely patch management and highlights the ongoing threat landscape that security teams must navigate to protect critical infrastructure.

NGate Android Malware Targets NFC Payment Data — The Hacker News

Security researchers have uncovered a new variant of the NGate Android malware that targets NFC payment data by trojanizing the HandyPay app. This iteration is designed to steal card data and PINs, posing a significant threat to Android users utilizing NFC payment systems. Organizations should enhance their mobile security posture by monitoring for unauthorized app installations and educating users on the risks of downloading apps from untrusted sources.

Google Patches Critical RCE in Antigravity IDE — Dark Reading

Google has released a patch for a critical remote code execution vulnerability in its Antigravity IDE, which was susceptible to prompt injection attacks. This vulnerability allowed attackers to execute arbitrary code on affected systems through crafted inputs. Security teams should prioritize applying this patch to prevent potential exploitation and ensure the integrity of development environments using Google's agentic AI tools.

• ‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty [Krebs on Security]
• French govt agency confirms breach as hacker offers to sell data [BleepingComputer]
• Vercel Breach: How a Roblox Cheat Download Led to a $2M Data Heist Through AI Tool OAuth Abuse - Security Boulevard [Google News Security]
• Exploits Turn Windows Defender into Attacker Tool [Dark Reading]
• Actively exploited Apache ActiveMQ flaw impacts 6,400 servers [BleepingComputer]