Tag: hacker
-
(g+) Anthropics Bericht über KI-Hacker: Keine CVE-ID – didn’t happen!
Ohne gründliche Dokumentation sind Anthropics Berichte über KI-Hacker unglaubwürdig. Das heißt nicht, dass LLMs kein Risiko darstellen. First seen on golem.de Jump to article: www.golem.de/news/anthropics-bericht-ueber-ki-hacker-keine-cve-id-didn-t-happen-2602-205498.html
-
Attacken auf VMs: Hacker nutzen fest kodierte Zugangsdaten in Dell-Tool aus
Dell hat in einem Back-up-Tool für virtuelle Maschinen Admin-Zugangsdaten zurückgelassen. Angreifer missbrauchen diese schon seit Mitte 2024. First seen on golem.de Jump to article: www.golem.de/news/attacken-auf-vms-hacker-nutzen-fest-kodierte-zugangsdaten-in-dell-tool-aus-2602-205531.html
-
Zero-Day in Dell RecoverPoint Exploited by Chinese Hacker Group
A critical zero-day vulnerability, tracked as CVE-2026-22769, is being actively exploited in Dell Technologies’ RecoverPoint for Virtual Machines. According to Mandiant and Google Threat Intelligence Group (GTIG), the flaw carries a perfect score severity score of 10, and has been weaponized by a Chinese threat cluster, identified as UNC6201. First seen on thecyberexpress.com Jump to…
-
Dell 0-Day Vulnerability Targeted by Chinese Hackers Since Mid-2024 for Ongoing Malware Campaign
A critical zero-day vulnerability in Dell RecoverPoint for Virtual Machines has been actively exploited by Chinese state-sponsored hackers since mid-2024. Mandiant and Google Threat Intelligence Group (GTIG) attribute this campaign to UNC6201, a threat cluster with significant overlaps to the group known as Silk Typhoon. The vulnerability, tracked as CVE-2026-22769, carries a maximum CVSS score of 10.0, allowing attackers to gain…
-
Dell 0-Day Vulnerability Targeted by Chinese Hackers Since Mid-2024 for Ongoing Malware Campaign
A critical zero-day vulnerability in Dell RecoverPoint for Virtual Machines has been actively exploited by Chinese state-sponsored hackers since mid-2024. Mandiant and Google Threat Intelligence Group (GTIG) attribute this campaign to UNC6201, a threat cluster with significant overlaps to the group known as Silk Typhoon. The vulnerability, tracked as CVE-2026-22769, carries a maximum CVSS score of 10.0, allowing attackers to gain…
-
Singapore & Its 4 Major Telcos Fend Off Chinese Hackers
After detecting a zero-day attack, the country’s effective response was attributed to the tight relationship between its government and private industry. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/singapore-major-telcos-fend-chinese-hackers
-
Hackers exploit zero-day flaw in Dell RecoverPoint for Virtual Machines
Threat actors linked to China have deployed a novel backdoor, according to researchers. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/zero-day-dell-recoverpoint-virtual-machines-exploited/812392/
-
Chinese hackers exploited a Dell zero-day for 18 months before anyone noticed
Google researchers said Chinese attackers have been exploiting a zero-day since mid-2024, and they’ve moved on to a more advanced version of Brickstorm malware called Grimbolt. First seen on cyberscoop.com Jump to article: cyberscoop.com/china-brickstorm-grimbolt-dell-zero-day/
-
RMM Abuse Explodes as Hackers Ditch Malware
It’s the path of lesser resistance, as remote monitoring and management (RMM) software offers stealth, persistence, and operational efficiency. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/rmm-abuse-explodes-hackers-ditch-malware
-
Chinese hackers exploiting Dell zero-day flaw since mid-2024
A suspected Chinese state-backed hacking group has been quietly exploiting a critical Dell security flaw in zero-day attacks that started in mid-2024. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-hackers-exploiting-dell-zero-day-flaw-since-mid-2024/
-
SmartLoader hackers clone Oura MCP project to spread StealC malware
Hackers used a fake Oura MCP server to trick users into downloading malware that installs the StealC info-stealer. Straiker’s AI Research (STAR) Labs team uncovered a SmartLoader campaign in which attackers cloned a legitimate MCP server linked to Oura Health to spread the StealC information stealer. The fake project appeared credible, complete with bogus forks…
-
Hackers target supporters of Iran protests in new espionage campaign
The campaign began in early January, shortly after mass nationwide demonstrations erupted across Iran calling for an end to the Islamic Republic system. First seen on therecord.media Jump to article: therecord.media/hackers-target-iran-protest-supporters-cyber-campaign
-
South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach
South Korea fined Dior, Louis Vuitton, and Tiffany $25M after hackers breached their Salesforce systems, exposing customer data. South Korea’s Personal Information Protection Commission fined luxury brands including Dior, Louis Vuitton, and Tiffany & Co. a total of 36 billion Korean won ($25 million) after hackers compromised their Salesforce systems. The attack, linked to Scattered…
-
Hackers steal OpenClaw configuration in emerging AI agent threat
Researchers found an infostealer stole a victim’s OpenClaw configuration, marking a shift toward targeting personal AI agents. Cybersecurity researchers have uncovered a new information stealer that exfiltrated a victim’s OpenClaw configuration environment, previously known as Clawdbot and Moltbot. According to cybersecurity firm Hudson Rock, the case highlights a new shift in infostealer activity, moving beyond…
-
Hackers sell stolen Eurail traveler information on dark web
Eurail B.V. revealed that traveler data were stolen in a recent security breach, and are now being sold on the dark web. Eurail B.V. confirmed that the traveler data stolen in a breach earlier this year is now being offered for sale on the dark web. The company disclosed the development as part of its…
-
How Red Teaming Reduces Breach Risk?
Red Teaming (also called adversary simulation) is a way to test how strong an organization’s security really is. In this, trained and authorized security experts act like real hackers and try to break into systems, just like attackers would in the real world. NIST defines a Red Team as a group that is allowed to……
-
Hackers Abuse ScreenConnect to Hijack PCs via Fake Social Security Emails
Forcepoint X-labs reveals how hackers use fake SSA emails and hijacked ScreenConnect tools to bypass Windows security to target UK, US, and Canadian organisations. First seen on hackread.com Jump to article: hackread.com/hackers-screenconnect-hijack-pcs-fake-social-security-emails/
-
Hackers Abuse ScreenConnect to Hijack PCs via Fake Social Security Emails
Forcepoint X-labs reveals how hackers use fake SSA emails and hijacked ScreenConnect tools to bypass Windows security to target UK, US, and Canadian organisations. First seen on hackread.com Jump to article: hackread.com/hackers-screenconnect-hijack-pcs-fake-social-security-emails/
-
Exploitable Flaws Found in Cloud-Based Password Managers
‘Malicious Server Threat Model’ Threatens ‘Zero Knowledge Encryption’ Guarantees. Claims by leading stand-alone password managers that their implementation of zero knowledge encryption means stored passwords can withstand the worst of hacker assaults are vastly overblown, say academic security researchers. They said vendors are in the process of patching the flaws they found. First seen on…
-
A Misconfigured AI Could Trigger Infrastructure Collapse
AI Fumbles, Not Hackers, Pose Next Shutdown Threat by 2028: Gartner. A misconfigured artificial intelligence system could do what hackers have tried and failed to accomplish: shut down an advanced economy’s critical infrastructure. The warning centers on scenarios where AI autonomously shuts down vital services, misinterprets sensor data or triggers unsafe actions. First seen on…
-
OpenAI Snags OpenClaw Creator for Agent Push
Steinberger to Lead AI Giant’s Multi-Agent Development Team. Peter Steinberger is joining OpenAI to lead development of personal agents, culminating weeks of viral attention paid to his OpenClaw open-source artificial intelligence assistant project. Security experts dubbed it a dumpster fire after hackers were quick to add malicious functions. First seen on govinfosecurity.com Jump to article:…
-
Vulnerabilities in Password Managers Allow Hackers to View and Change Passwords
Security researchers have challenged end-to-end encryption claims from popular commercial password managers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/vulnerabilities-password-managers/
-
Hackers Exploit ‘Summarize with AI’ Feature to Inject Malicious Prompts into AI Recommendations
Hackers and marketers are increasingly abusing “Summarize with AI” buttons and AI-share links to quietly plant persistent instructions in AI assistants’ memory, a growing attack trend Microsoft calls AI Recommendation Poisoning. By silently biasing what assistants “remember” as trusted or preferred sources, these attacks can warp recommendations on high”‘impact topics like health, finance, and security without…
-
Google Ads and Claude AI Abused to Spread MacSync Malware via ClickFix
Cybersecurity experts at Moonlock Lab have discovered a new ClickFix attack. Hackers are using hijacked Google Ads and fake Claude AI guides to trick Mac users into installing the data-stealing MacSync malware. First seen on hackread.com Jump to article: hackread.com/google-ads-claude-ai-macsync-malware-clickfix/
-
Japanese sex toys maker Tenga discloses data breach
Sex toy maker Tenga says a hacker accessed an employee’s email account, potentially exposing customer names, emails, and order details. TENGA Co., Ltd. is a Tokyo-based Japanese sexual wellness and lifestyle company known for its innovative adult products. It employs roughly 125200 people worldwide across its Japan headquarters and international offices. Tenga operates in personal…
-
Japanese sex toys maker Tenga discloses data breach
Sex toy maker Tenga says a hacker accessed an employee’s email account, potentially exposing customer names, emails, and order details. TENGA Co., Ltd. is a Tokyo-based Japanese sexual wellness and lifestyle company known for its innovative adult products. It employs roughly 125200 people worldwide across its Japan headquarters and international offices. Tenga operates in personal…
-
Japanese sex toys maker Tenga discloses data breach
Sex toy maker Tenga says a hacker accessed an employee’s email account, potentially exposing customer names, emails, and order details. TENGA Co., Ltd. is a Tokyo-based Japanese sexual wellness and lifestyle company known for its innovative adult products. It employs roughly 125200 people worldwide across its Japan headquarters and international offices. Tenga operates in personal…
-
Configuration Manager: Hacker attackieren verbreitetes Microsoft-Admin-Tool
Der von vielen IT-Admins genutzte Microsoft Configuration Manager steht unter Beschuss. Auf ungepatchten Systemen lässt sich Schadcode einschleusen. First seen on golem.de Jump to article: www.golem.de/news/configuration-manager-hacker-attackieren-verbreitetes-microsoft-admin-tool-2602-205431.html
-
Canada Goose investigating as hackers leak 600K customer records
ShinyHunters, a well-known data extortion group, claims to have stolen more than 600,000 Canada Goose customer records containing personal and payment-related data. Canada Goose told BleepingComputer the dataset appears to relate to past customer transactions and that it has not found evidence of a breach of its own systems. First seen on bleepingcomputer.com Jump to…
-
Canada Goose investigating as hackers leak 600K customer records
ShinyHunters, a well-known data extortion group, claims to have stolen more than 600,000 Canada Goose customer records containing personal and payment-related data. Canada Goose told BleepingComputer the dataset appears to relate to past customer transactions and that it has not found evidence of a breach of its own systems. First seen on bleepingcomputer.com Jump to…