Hacker Used Claude and ChatGPT to Breach Multiple Government Agencies

Solo hacker used AI to breach 9 Mexican government agencies, exposing 195 million citizens' data in hours instead of weeks.
Tech Xplore

Claude Mythos and Project Glasswing: Why an AI superhacker has the tech world on alert

New, more powerful artificial intelligence (AI) models are announced pretty regularly these days: the latest version of ChatGPT or Claude or Gemini always has new features and new capabilities that ...

Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...

Claude Mythos Is Everyone’s Problem

On Tuesday, the company officially announced the existence of the model, known as Claude Mythos Preview. For now, the bot ...

Hack-for-hire group caught targeting Android devices and iCloud backups

Security researchers exposed a spying campaign by a hack-for-hire group that used Android spyware and phishing to steal ...

Men Are Buying Hacking Tools to Use Against Their Wives and Friends

In Telegram groups, men are sharing thousands of nonconsensual images of women and girls, buying spyware, and engaging in ...
The Hacker News

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...
The Hacker News

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

M stolen after six-month DPRK social engineering campaign began fall 2025, exposing Drift’s contributors and cloud assets.
Cybernews

Mercor confirms cyberattack as hackers claim 4TB of critical data in possession

AI recruiting startup Mercor confirms supply chain attack via LiteLLM library compromise. Hackers claim 4TB of data including ...
SecurityWeek

TeamPCP Moves From OSS to AWS Environments

The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...

Major compromise of the telnyx PyPI library could put millions of users at risk

JFrog reports Telnyx PyPI package was poisoned with malware by TeamPCP Malicious update delivered hidden .wav payload that deployed infostealer and persistence mechanisms Users advised to downgrade, ...
CNET

Keep Your Passwords Strong and Secure With These 9 Rules

Clifford led How To coverage. He spent a handful of years at Peachpit Press, editing books on everything from the first iPhone to Python. He also worked at a handful of now-dead computer magazines, ...