Tenable researchers have discovered severe vulnerabilities in Microsoft’s AI healthcare chatbot, Azure Health Bot Service, potentially granting access to user information and other resources. Microsoft quickly applied mitigations for the vulnerabilities and no evidence of exploitation by malicious actors has been found. The flaws underscore the importance of web application and cloud security mechanisms for AI-powered services.
North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages
North Korean threat actors are using npm (Node Package Manager) ecosystem to publish malicious packages to deliver malware. The campaign aims to infiltrate developer systems,
