“Cyber warfare is as much about psychological strategy as technical prowess.”
― James Scott
-
ClickFix and removable media lead malware delivery methods
Now more than ever, defenders must look for suspicious behavior, not specific malware. Learn how to defend against two trending initial access methods.Read More
-

Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages [email protected] (The Hacker News)
Unknown threat actors compromised the Injective Labs SDK project’s GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases. The compromised version, @injectivelabs/[email protected], came embedded with fake telemetry functionality that exfiltrated data from cryptocurrency wallets. The version wasRead More
-

URGENT – Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat [email protected] (The Hacker News)
Progress Software has told ShareFile customers to shut down the Windows servers running their Storage Zone Controllers, confirming to The Hacker News that it is responding to a “credible external security threat.” The company has temporarily disabled access to the affected accounts, a step it says it took “out of an abundance of caution” while…
-

Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot [email protected] (The Hacker News)
Researchers at firmware security firm Binarly have found six new flaws in U-Boot, the small program that starts up hardware as varied as home routers, smart cameras, and the management chips inside data-center servers. Four of the bugs can crash a device. The other two could let an attacker who slips a malicious image in front of…
-

Laser Attack Resets Tangem Wallet Passwords on Cards That Can’t Be Patched [email protected] (The Hacker News)
Researchers at Ledger’s Donjon security team have shown that a precisely timed laser pulse, aimed at the chip inside a Tangem crypto wallet card, can reset the card’s password to anything the attacker picks. No old password. No backup card. Once it is reset, whoever did it controls the wallet and can move the coins out. This is…
-

Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws [email protected] (The Hacker News)
Details have emerged about three now-patched security flaws in the OpenClaw personal artificial intelligence (AI) assistant that, if successfully exploited, could enable credential theft, privilege escalation, and arbitrary code execution on the host. A brief description of the high-severity vulnerabilities is as follows – GHSA-hjr6-g723-hmfm (CVSS score: 8.8) – An operating systemRead More
-

New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic [email protected] (The Hacker News)
The China-linked cybercrime group known as Silver Fox has been attributed to a new Rust-based remote access trojan (RAR) called MODBEACON. Chinese cybersecurity company QiAnXin said that while the threat cluster may appear like a low-sophistication, high-activity operation that propagates malware via counterfeit installers using SEO poisoning techniques, it belies their true organizationalRead More
-

Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers [email protected] (The Hacker News)
A single wrong variable on one line in XQUIC, Alibaba’s QUIC and HTTP/3 library, lets any remote client crash the server with a short burst of completely legal traffic. There is no patch. FoxIO researcher Sébastien Féry disclosed the flaw on July 8 and nicknamed it XRING. He says it needs no login and no malformed packets:…
-

From 17,000 to 1.1 Million Assets: How Lumen Technologies Rebuilt Exposure Management at Scale [email protected] (The Hacker News)
Most enterprises assume their asset inventory is close enough to accurate. The evidence suggests otherwise. According to a survey of over 600 security leaders in the 2026 Axonius Actionability Report, only 45% of organizations consolidate their asset and exposure data into a single view, and every downstream security program inherits whatever the inventory gets wrong.…
-

Exposed Hacker Server Reveals WP-SHELLSTORM Backdooring Thousands of WordPress Sites [email protected] (The Hacker News)
A cybercrime crew left one of its own servers wide open on the internet for three weeks, and it exposed the operation’s inner workings: the hacking tools, the activity logs, and target lists naming more than 1.4 million websites. Far fewer were actually broken into, but the exposed files showed researchers how a mass site-hacking…
“Security used to be an inconvenience sometimes, but now it’s a necessity all the time.”
― Martina Navratilova
