Category: Uncategorized

  • Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation

    Google on Monday disclosed that it identified an unknown threat actor using a zero-day exploit that it said was likely developed with an artificial intelligence (AI) system, marking the first time the technology has been put to use in the wild in a malicious context for vulnerability discovery and exploit generation.
    The activity is said to be the work of cybercrime threat actors who appear to
  • ⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More

    ⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More

    Rough Monday.
    Somebody poisoned a trusted download again, somebody else turned cloud servers into public housing, and a few crews are still getting into boxes with bugs that should’ve died years ago — the same old holes, same lazy access paths, same “how the hell is this still open” feeling. One report this week basically reads like a guy tripped over root access by accident and decided to stay
  • Your Purple Team Isn’t Purple — It’s Just Red and Blue in the Same Room

    Your Purple Team Isn’t Purple — It’s Just Red and Blue in the Same Room

    Defending a network at 2 am looks a lot like this: an analyst copy-pasting a hash from a PDF into a SIEM query. A red team script is being rewritten by hand so the blue team can use it. A patch waiting on a change-approval window that’s longer than the exploitation window itself.
    Nobody in that chain is incompetent. Every human is doing their job correctly. The problem is the system, its
  • Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloads

    Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloads

    A malicious Hugging Face repository managed to take a spot in the platform’s trending list by impersonating OpenAI’s Privacy Filter open-weight model to deliver a Rust-based information stealer to Windows users.
    The project, named Open-OSS/privacy-filter, masqueraded as its legitimate counterpart, released by OpenAI late last month (openai/privacy-filter), including copying the entire
  • Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak

    Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak

    Cybersecurity researchers have disclosed a critical security vulnerability in Ollama that, if successfully exploited, could allow a remote, unauthenticated attacker to leak its entire process memory.
    The out-of-bounds read flaw, which likely impacts over 300,000 servers globally, is tracked as CVE-2026-7482 (CVSS score: 9.1). It has been codenamed Bleeding Llama by Cyera.
    Ollama is a
  • cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

    cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

    cPanel has released updates to address three vulnerabilities in cPanel and Web Host Manager (WHM) that could be exploited to achieve privilege escalation, code execution, and denial-of-service.
    The list of vulnerabilities is as follows –

    CVE-2026-29201 (CVSS score: 4.3) – An insufficient input validation of the feature file name in the “feature::LOADFEATUREFILE” adminbin call that could result

  • TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

    TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

    Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that’s capable of targeting 59 banking, fintech, and cryptocurrency platforms.
    The activity is being tracked by Elastic Security Labs under the moniker REF3076. The malware family is assessed to be a major update of the Maverick, which is known to leverage a worm called SORVEPOTEL to spread via
  • Fake Call History Apps Stole Payments From Users After 7.3 Million Play Store Downloads

    Cybersecurity researchers have discovered fraudulent apps on the official Google Play Store for Android that falsely claimed to offer access to call histories for any phone number, only to trick users into joining a subscription that provided fake data and incurred financial loss.
    The 28 apps have collectively racked up more than 7.3 million downloads, with one of them alone accounting for over
  • One Click, Total Shutdown: The “Patient Zero” Webinar on Killing Stealth Breaches

    One Click, Total Shutdown: The “Patient Zero” Webinar on Killing Stealth Breaches

    The hardest part of cybersecurity isn’t the technology, it’s the people.
    Every major breach you’ve read about lately usually starts the same way: one employee, one clever email, and one “Patient Zero” infection.
    In 2026, hackers are using AI to make these “first clicks” nearly impossible to spot. If a single laptop gets compromised on your watch, do you have a plan to stop it from taking down
  • Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise

    A previously undocumented Linux implant codenamed Quasar Linux RAT (QLNX) is targeting developers’ systems to establish a silent foothold as well as facilitate a broad range of post-compromise functionality, such as credential harvesting, keylogging, file manipulation, clipboard monitoring, and network tunneling.
    “QLNX targets developers and DevOps credentials across the software supply chain,”