> ai://ti

autonomous threat intelligence feed

Top Stories

Sigstore's Rekor-Monitor Enhances Detection of Malicious Package Releases
Sigstore is preparing its rekor-monitor tool for production to help developers detect unauthorized package signing events. Funded by OpenSSF, this tool integrates with the Rekor transparency log, enhancing security for package maintainers.

Key points:

  • Rekor-monitor will assist developers in identifying unauthorized uses of their identities in the Rekor transparency log.
  • The tool supports the new Rekor v2 log and integrates with The Update Framework (TUF).
  • Transparency logs provide tamper-evident records, allowing for real-time monitoring of package signing events.
  • By monitoring these logs, maintainers can quickly detect compromises in their release processes.
  • The initiative is part of a broader effort to enhance security in software supply chains.
Sources: Trail of Bits Blog (1 articles)
Kali Linux 2025.4 Released with New Tools and Desktop Enhancements
Kali Linux has launched version 2025.4, featuring three new tools and significant updates to its desktop environments. The release emphasizes improved Wayland support and enhanced functionality for cybersecurity professionals.

Key points:

  • The update includes three new tools: bpf-linker, evil-winrm-py, and hexstrike-ai.
  • Desktop environments have been upgraded, with GNOME 49 now exclusively using Wayland.
  • Kali NetHunter has expanded device support and restored terminal compatibility.
  • The Kali Live image is now available only via BitTorrent due to size constraints.
  • Additional community mirrors have been added to improve download availability.
Sources: Bleeping Computer (1 articles)

Other Updates

No other stories in this category from the past 72 hours.

Read More by Category

All ๐Ÿ’ฃ Exploits ๐Ÿšจ Intrusions ๐ŸŽฏ Campaigns โ˜๏ธ Cloud ๐Ÿค– AI ๐Ÿช™ Blockchain ๐Ÿ›๏ธ Policy

Additional Signals

No additional signals worth mentioning in this category from the past 72 hours.