Cybersecurity News
-
Securing the Frontier: OpenAI’s GPT-5.5 Bio Bug Bounty Program Aims to Improve AI Safety and Performance
As large language models (LLMs) transition from general-purpose assistants to highly sophisticated cognitive engines, the surface area for potential misuse expands exponentially. To proactively mitigate the risks associated with dual-use…
Read More » -
Analyzing a New PowerShell-Based Telegram Session Stealer: From Pastebin to Bot API Exfiltration
Threat actors are currently refining a specialized class of infostealers specifically designed to hijack Telegram sessions. Unlike broad-spectrum malware that scrapes general browser credentials or banking passwords, this new toolchain…
Read More » -
The Trojan Interview: How Void Dokkaebi Exploits Developer Trust to Fuel Supply Chain Attacks
In the high-stakes world of software engineering, a job offer is often the ultimate motivator. However, the threat actor known as Void Dokkaebi (also identified as Famous Chollima) is turning…
Read More » -
Critical Authentication Bypass Vulnerability (CVE-2025-65856) in Hangzhou Xiongmai XM530 IP Cameras
A high-severity security flaw has been uncovered in the Hangzhou Xiongmai Technology XM530 series IP cameras, posing an imminent threat to the integrity of commercial surveillance infrastructures. This vulnerability allows…
Read More » -
Critical Memory Corruption Vulnerability Discovered in Python’s asyncio on Windows
A significant security flaw has surfaced within Python’s asyncio module, specifically targeting Windows environments. This high-severity vulnerability introduces the risk of an out-of-bounds (OOB) write, a condition where an attacker…
Read More » -
Critical Memory Leak Vulnerability Uncovered in Ollama’s Quantization Engine
In a significant blow to local LLM security, cybersecurity researchers have identified a critical, unpatched vulnerability within Ollama, the widely adopted open-source framework designed for local large language model orchestration.…
Read More » -
Bissa Scanner: AI-Driven Mass Exploitation of React2Shell (CVE-2025-55182) Unveiled
A highly structured, industrial-scale exploitation campaign is currently targeting internet-facing infrastructure by weaponizing React2Shell (CVE-2025-55182). Unlike traditional “smash-and-grab” attacks, this operation leverages a sophisticated modular framework known as the Bissa…
Read More » -
The Invisible Shadow: How Signaling Vulnerabilities Enable Global Mobile Surveillance
A groundbreaking investigation by Citizen Lab has pulled back the curtain on a series of sophisticated, multi-year surveillance campaigns that exploit the very architecture of our global mobile networks. This…
Read More » -
Trigona Affiliates Pivot to Proprietary Data Exfiltration Tooling
In a significant tactical shift, ransomware operators are moving away from “living off the land” with common utilities and toward the development of bespoke malware. Recent observations indicate that Trigona…
Read More » -
500,000 Britons’ Genetic Data Listed for Sale on Alibaba — And No One Noticed Until It Was Too Late
Sometime in mid-April 2026, a product appeared on Alibaba — China’s sprawling, Amazon-like e-commerce platform — that had no business being there. It wasn’t a knock-off handbag or a counterfeit…
Read More » -
NCSC-UK Warns of China-Linked Covert Networks Using Hijacked IoT Devices
The UK’s National Cyber Security Centre (NCSC), along with international partners, has issued a joint warning about a growing trend among China-linked hackers: the use of large-scale proxy networks made…
Read More » -
Context.ai Compromise Exposes Vercel Customers
In a recent disclosure that highlights the growing complexity of modern software supply chains, Vercel has confirmed a sophisticated security breach involving unauthorized access to specific internal systems. While the…
Read More » -
GitLab Issues Emergency Patches for 11 Vulnerabilities
GitLab has issued an urgent security advisory following the discovery of 11 distinct vulnerabilities affecting both its Community Edition (CE) and Enterprise Edition (EE). The security sweep includes three high-severity…
Read More » -
Harvester APT Deploys Linux Variant of GoGra Backdoor via Microsoft Graph API, Outlook Mailboxes
In a significant pivot for cyber espionage tactics, security researchers have uncovered a Linux-compatible variant of the GoGra backdoor. This new iteration is being weaponized by the Harvester APT group,…
Read More » -
From Disclosure to Exploitation in Hours: LMDeploy SSRF Vulnerability Exploited in the Wild
In the rapidly evolving landscape of AI infrastructure, the window between vulnerability disclosure and active exploitation is shrinking to a matter of hours. A recent case study involving LMDeploy—an open-source…
Read More » -
The Evolution of Deception: Unmasking North Korean ‘Laptop Farms’ and Remote Work Infiltration
North Korean threat actors are refining a high-stakes social engineering playbook, leveraging the global shift toward remote work to bypass international sanctions and infiltrate high-value organizations. By deploying sophisticated “fake…
Read More » -
The Industrialization of Web3 Theft: How HexagonalRodent Leverages AI and Social Engineering to Loot Developers
In a sophisticated evolution of North Korean cyber operations, a threat actor group known as HexagonalRodent is systematically targeting the Web3 ecosystem. By blending high-touch social engineering with AI-augmented malware…
Read More »