CPO Magazine

Over 800,000 Internet-Exposed Telnet Servers Affected by Decade-old Critical Security Vulnerability

A decade-old critical security vulnerability affects over 800,000 internet-exposed telnet servers, with reports of active ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
Dark Reading

TeamPCP Turns Cloud Infrastructure into Crime Bots

The threat actor has been compromising cloud environments at scale with automated worm-like attacks on exposed services and ...
The Hacker News

⚡ Weekly Recap: AI Skill Malware, 31Tbps DDoS, Notepad++ Hack, LLM Backdoors and More

This week’s cyber recap covers AI risks, supply-chain attacks, major breaches, DDoS spikes, and critical vulnerabilities security teams must track.
The Hacker News

Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers

Python infostealers are spreading from Windows to macOS via Google Ads, ClickFix lures, and fake installers to steal credentials and financial data.

Man pleads guilty to hacking nearly 600 women’s Snapchat accounts

An Illinois man pleaded guilty to hacking nearly 600 women's Snapchat accounts to steal nude photos that he kept, sold, or ...

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...