Inside the story of the US defense contractor who leaked hacking tools to Russia

The former boss of a U.S. hacking tools maker was jailed for selling highly sensitive software exploits to a Russian broker.
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
CSO Online

Attackers exploit Ivanti EPMM zero-days to seize control of MDM servers

Palo Alto Networks’ Unit 42 says two critical flaws are being actively abused to gain unauthenticated access, deploy persistent backdoors, and compromise entire enterprise mobile fleets even after ...
CoinDesk

How AI is helping retail traders exploit prediction market 'glitches' to make easy money

A fully automated bot quietly captured micro-arbitrage opportunities on short-term crypto prediction markets, netting nearly ...
The Hacker News

New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft

ZeroDayRAT is a cross-platform mobile spyware sold on Telegram that enables live surveillance, OTP theft, and financial data ...

Windows shortcut files targeted by ransomware gang Global Group

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in exploits, defenders might have hoped use of this tactic would decline. They were ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

In January 2026, Microsoft Defender Experts identified a new evolution in the ongoing ClickFix campaign. This updated tactic deliberately crashes victims’ browsers and then attempts to lure users into ...
CoinTelegraph

Truebit exploit exposes smart-contract flaw behind $26M token mint

Truebit lost $26 million after a smart-contract overflow bug let an attacker mint tokens at near-zero cost, sending the TRU price down 99%. A $26 million exploit of the offline computation protocol ...
TWCN Tech News

How to disable Exploit Protection in Windows 11

Windows doesn’t offer a single switch to disable Exploit Protection completely. You can only disable individual mitigations system-wide or per app. We strongly recommend turning it off only for ...
Forbes

Ongoing Ransomware Attacks Exploit Linux Vulnerability, CISA Warns

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Admit it: the first thing you think of when ransomware is ...
CoinTelegraph

Apple patches zero-click exploit threatening crypto users

Apple patched a zero-click vulnerability that allowed sophisticated attackers to compromise devices and could have led to cryptocurrency theft; it urged immediate updates. Apple is urging users to ...
CSOonline

Exploit details released for Citrix Bleed 2 flaw affecting NetScaler

Amid confusing reports about Citrix NetScaler exploits in the wild, researchers offer technical analyses and indicators of compromise for one of the vulnerabilities dubbed Citrix Bleed 2 that can lead ...