New Amaranth Dragon cyberespionage group exploits WinRAR flaw

A new threat actor called Amaranth Dragon, linked to APT41 state-sponsored Chinese operations, exploited the CVE-2025-8088 ...
The Hacker News

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Active attacks exploit Metro4Shell (CVE-2025-11953) in React Native CLI to execute commands and deploy Rust malware.

Wave of Citrix NetScaler scans use thousands of residential proxies

A coordinated reconnaissance campaign targeting Citrix NetScaler infrastructure over the past week used tens of thousands of ...
The Hacker News

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

ClickFix uses fake CAPTCHAs and a signed Microsoft App-V script to deploy Amatera stealer on enterprise Windows systems.
SecurityWeek

Cyber Insights 2026: Malware and Cyberattacks in the Age of AI

How AI and agentic AI are reshaping malware and malicious attacks, driving faster, stealthier, and more targeted ...

I hacked my own computer using OpenClaw and it was terrifyingly easy

Agentic AI tools like OpenClaw promise powerful automation, but a single email was enough to hijack my dangerously obedient ...
CPO Magazine

Over 800,000 Internet-Exposed Telnet Servers Affected by Decade-old Critical Security Vulnerability

A decade-old critical security vulnerability affects over 800,000 internet-exposed telnet servers, with reports of active ...

I installed Android on an Echo Show, and it gave my smart display a new life

Select Echo Show models can now be jailbroken, allowing you to ditch Fire OS for Android and install any app under the sun.
Dark Reading

Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil

Attackers could even have used one vulnerable Lookout user to gain access to other Google Cloud tenants' environments.
Campaign Live

Anthropic’s Super Bowl debut hilariously touts Claude’s ad-free AI

As OpenAI brings ads to ChatGPT, its popular competitor brings two cheeky spots from Mother to the Big Game, quashing any ...
LinuxInsider

Weaponized Python and Linux Malware Target Executives and Cloud Systems

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...
KSL

Architects of ambition: Can AI make the classroom more human?

Utah legislation could ensure that AI tools assist teachers without replacing their essential roles, as the state embraces artificial intelligence in the classroom.