Shopping News / Articles
LLM-Assisted TuxBot Botnet Targets IoT Devices Across 17 Processor Architectures
3+ hour, 11+ min ago (551+ words) TuxBot v3 Evolution, a modular IoT botnet framework capable of infecting devices running architectures ranging from ARM and MIPS to x86_64, PowerPC and RISC-V. The platform appears designed for mass compromise, persistence and distributed denial-of-service operations, with a C-based bot agent and…...
GPT-5.6 Sol Ultra Writes Complete Chrome Exploit With V8 Sandbox Escape
2+ hour, 56+ min ago (558+ words) A security researcher reported that the GPT-5.6 Sol Ultra model successfully produced a working renderer exploit for Chrome version 149.0.7827.201. This exploit utilized V8 version 14.9.207.35. The model reportedly combined multiple patched issues in the JavaScript engine and WebAssembly infrastructure, ultimately launching the…...
China-Linked Daxin Backdoor Resurfaces in Taiwan Alongside New STUPIG SYSTEM-Level Malware
4+ hour, 12+ min ago (498+ words) The China-linked Daxin backdoor has resurfaced in an active intrusion targeting a Taiwan-based subsidiary of a multinational high-tech manufacturer, exposing the enduring reach of an espionage operation first publicly detailed in 2022. Daxin’s return is significant because the malware was already…...
Russian-Speaking Hacker Uses Gemini CLI to Deploy C2 Botnet in Six Minutes
20+ hour, 6+ min ago (640+ words) A Russian-speaking threat actor tracked as “bandcampro” used Google Gemini CLI as an end-to-end operational assistant to migrate a command-and-control server, deploy a replacement VPS, configure Cloudflare tunnels, and restore control of compromised endpoints within six minutes. The findings are…...
NSA Warns Russian State-Sponsored Hackers Exploiting Vulnerable Routers to Target Critical Infrastructure
2+ day, 5+ hour ago (309+ words) The U.S. National Security Agency (NSA) and international cybersecurity partners have issued a warning that Russian state-sponsored threat actors are actively exploiting vulnerable and poorly configured network routers to access organizations in critical infrastructure sectors. In a joint Cybersecurity Advisory (CSA)…...
Ransomware Negotiator Jailed for Leaking Victim Secrets to BlackCat Hackers"
6+ day, 3+ hour ago (429+ words) Angelo Martino, a former ransomware negotiator from Florida, has been sentenced to 70,707 months in federal prison for conspiring with ALPHV/BlackCat ransomware operators to extort victims whom he was supposed to help during incident-response engagements. The U.S. Department of Justice announced…...
Umbrij Malware Lets ToddyCat Hackers Hijack Gmail Accounts Through Google API Abuse
1+ week, 3+ hour ago (456+ words) A targeted campaign in which the ToddyCat (aka APT-style) group leverages a previously observed loader family, Umbrij, to hijack Gmail accounts by abusing Google APIs. Chaining that capability to broad remote access achieved through a malicious MSI installer masquerading as…...
Nike Alleged Breach: Threat Actors Claim Leak of Millions of Customer Records
6+ day, 23+ hour ago (545+ words) A threat actor on a prominent cybercrime forum has claimed responsibility for leaking data allegedly belonging to Nike and Alcon, posting the purported datasets for download. The claims, currently unverified, suggest a significant breach affecting millions of records across both…...
China-Aligned UNK_MassTraction Exploits Roundcube Servers to Target Universities
1+ week, 1+ day ago (435+ words) A suspected China-aligned cluster dubbed UNK_MassTraction that is exploiting n-day flaws in Roundcube webmail to compromise physics and engineering departments at U.S. and Canadian universities. The operators use a two-stage browser-to-server infection chain that begins with a Cross-Site Scripting (XSS) exploit against…...
LONGLEASH Malware Adds Reverse Shell, Proxying, and Intermediate C2 Capabilities
1+ week, 1+ day ago (454+ words) LONGLEASH retains SHORTLEASH’s ff-agent codebase but expands its operational scope. The implant, internally named “nz1.0,” splits into Base, Executor, and Core modules. Built for multiple architectures and, for MIPS builds, compiled against Boost.Asio to maximize asynchronous network throughput, the payload…...
Shopping
Please enter a search for detailed shopping results.