Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...

West Asia war spills over to cyberspace: Emails spoofed, cameras hacked

While Israel reportedly hacked into CCTV camera networks in the Iranian capital, Tehran, to keep tabs on its targets, Iran ...

CPUID hacked to deliver malware via CPU-Z, HWMonitor downloads

Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve ...

Claude Mythos Is Everyone’s Problem

On Tuesday, the company officially announced the existence of the model, known as Claude Mythos Preview. For now, the bot ...
Infosecurity Magazine

Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group

A spear-phishing campaign which spread across the Middle East between 2023 and 2024 has now been linked to Bitter APT group ...

Hack-for-hire group caught targeting Android devices and iCloud backups

Security researchers exposed a spying campaign by a hack-for-hire group that used Android spyware and phishing to steal ...

Men Are Buying Hacking Tools to Use Against Their Wives and Friends

In Telegram groups, men are sharing thousands of nonconsensual images of women and girls, buying spyware, and engaging in ...

Thousands of consumer routers hacked by Russia’s military

The Russian military is once again hacking home and small office routers in widespread operations that send unwitting users ...

A hacker has allegedly breached one of China’s supercomputers and is attempting to sell a trove of stolen data

A hacker has allegedly stolen a massive trove of sensitive data – including highly classified defense documents and missile ...

ICE acknowledges it is using powerful spyware

In a letter sent last week, ICE's top official indicated to members of Congress that the agency is using a spyware tool to ...

Anthropic’s latest AI model could let hackers carry out attacks faster than ever. It wants companies to put up defenses first

Anthropic will make its new AI model available to some of the world’s biggest cybersecurity and software firms in an effort ...
The Hacker News

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...