tools

April 8, 2026

Anthropic Launches Claude Mythos Preview Focused on Zero-Day Vulnerability Discovery

Anthropic recently unveiled Claude Mythos Preview, a groundbreaking general-purpose language model demonstrating an unprecedented, emergent ability to autonomously discover and…
Read More »
April 8, 2026

EvilTokens Uses Stolen Microsoft 365 Tokens, AI to Supercharge BEC

EvilTokens is a new Phishing-as-a-Service (PhaaS) platform that turns stolen Microsoft 365 tokens and AI into an end‑to‑end factory for…
Read More »
April 8, 2026

Masjesu Botnet Targets Routers in Commercial DDoS Attacks

Hackers are abusing the Masjesu botnet to run high-volume DDoS-for-hire attacks against routers, gateways, and other exposed IoT infrastructure, turning…
Read More »
April 8, 2026

Cybercriminals Use Fake Zoom, Teams Calls to Deliver Malware

Hackers are increasinglyusing fake Zoom and Microsoft Teams meetings to trick victims into infecting their own systems with malware. SEAL…
Read More »
April 8, 2026

FBI Takes Down Russian Campaign That Compromised Thousands of Routers

U.S. Justice Department and FBI actions disrupted a worldwide network of hacked SOHO routers controlled by Russia’s GRU intelligence agency…
Read More »
April 8, 2026

Claude Code Leak Exploited to Spread Vidar and GhostSocks via GitHub Releases

Hackers exploited the exposed Claude Code source leak as a channel for malware distribution, using GitHub Releases to deliver the…
Read More »
April 8, 2026

Fiber Optic Cables Turned Into Hidden Microphones to Spy on Private Conversations

Internet users worldwide rely on fiber optic cables for blazing-fast and secure web connections. However, a groundbreaking discovery reveals that…
Read More »
April 8, 2026

ComfyUI Servers Hijacked for Cryptomining, Proxy Botnet Ops

Hackers are aggressively hijacking Internet-exposed ComfyUI servers and converting them into high‑value cryptomining rigs and proxy botnet nodes, abusing weakly…
Read More »
April 7, 2026

BPFDoor Variants Hide with Stateless C2 and ICMP Relay Tactics

Seven novel BPFDoor variants enhance Linux backdoor tradecraft, embedding implants deep within kernel space to evade detection in extensive telecom…
Read More »
April 7, 2026

Fake Gemini npm Package Steals AI Tool Tokens

Malicious actors are exploiting a counterfeit Gemini-themed npm package to pilfer tokens and secrets from developers utilizing AI coding tools…
Read More »
April 7, 2026

Tor-Backed ClickFix Campaign Drops Node.js RAT on Windows

Criminals are leveraging the “ClickFix” scheme, a deceptive tactic that dupes users into engaging with counterfeit CAPTCHA or verification screens.…
Read More »
April 7, 2026

Threat Actors Exploit LogMeIn Resolve, ScreenConnect in Phishing Campaigns

Cybercriminals are exploiting legitimate remote monitoring and management (RMM) tools LogMeIn Resolve and ScreenConnect in a multi-stage phishing operation that…
Read More »
April 6, 2026

Iran-Linked Hackers Hit M365 Tenants in Middle East Password Spray Campaign

Iran-linked threat actors have launched a coordinated password-spraying campaign targeting Microsoft 365 environments across the Middle East, according to new…
Read More »
April 6, 2026

Microsoft Warns Storm-1175 Exploiting Web-Facing Flaws to Deploy Medusa Ransomware

Microsoft is warning that a fast‑moving threat actor it tracks as Storm-1175 is aggressively exploiting vulnerabilities in internet‑exposed systems to…
Read More »
April 6, 2026

Alleged REvil Leader ‘UNKN’ Identified by German Authorities in New Takedown Effort

German authorities have officially named one of the most notorious names in cybercrime. The German Federal Criminal Police (BKA) recently…
Read More »
April 6, 2026

Trojanized PyPI AI Proxy Steals Claude Prompt, Exfiltrates Data

A malicious PyPI package, hermes-px, masquerades as a “Secure AI Inference Proxy” while secretly stealing user prompts and abusing a…
Read More »
April 6, 2026

Google’s Bug Bounty Program Hits Record $17 Million in 2025 Payouts

Google announced a record-breaking year for its Vulnerability Reward Program (VRP) in 2025, paying out over $17 million to ethical…
Read More »
April 6, 2026

36 Malicious Strapi npm Packages Deliver Redis RCE, Persistent C2 Malware

A coordinated supply chain attack has been uncovered involving 36 malicious npm packages masquerading as Strapi CMS plugins, delivering a…
Read More »
April 6, 2026

North Korea’s Modular Malware Strategy Hides Attribution, Defies Takedowns

North Korea’s cyber operations have evolved from a monolithic structure to a modular, portfolio-style ecosystem. This design ensures resilience, making…
Read More »
April 4, 2026

Hackers Launch Social Engineering Offensive Against Key Node.js Maintainers

Following the high-profile supply chain compromise of the widely used Axios package, a highly coordinated social engineering campaign has been…
Read More »

Previous page Next page