Category: Bleeping Computer

SolarWinds
03
Feb
2026

CISA flags critical SolarWinds RCE flaw as exploited in attacks

CISA has flagged a critical SolarWinds Web Help Desk vulnerability as actively exploited in attacks and ordered federal agencies to…

Share: X : CISA flags critical SolarWinds RCE flaw as exploited in attacksFacebook : CISA flags critical SolarWinds RCE flaw as exploited in attacksLinkedin : CISA flags critical SolarWinds RCE flaw as exploited in attacksReddit : CISA flags critical SolarWinds RCE flaw as exploited in attacksTelegram : CISA flags critical SolarWinds RCE flaw as exploited in attacksWhatsApp : CISA flags critical SolarWinds RCE flaw as exploited in attacksEmail : CISA flags critical SolarWinds RCE flaw as exploited in attacks
Iron Mountain
03
Feb
2026

Data breach mostly limited to marketing materials

Iron Mountain, a leading data storage and recovery services company, says that a recent breach claimed by the Everest extortion…

Share: X : Data breach mostly limited to marketing materialsFacebook : Data breach mostly limited to marketing materialsLinkedin : Data breach mostly limited to marketing materialsReddit : Data breach mostly limited to marketing materialsTelegram : Data breach mostly limited to marketing materialsWhatsApp : Data breach mostly limited to marketing materialsEmail : Data breach mostly limited to marketing materials
Hackers use critical React Native Metro bug to breach dev systems
03
Feb
2026

Hackers exploit critical React Native Metro bug to breach dev systems

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native to deliver malicious payloads for…

Share: X : Hackers exploit critical React Native Metro bug to breach dev systemsFacebook : Hackers exploit critical React Native Metro bug to breach dev systemsLinkedin : Hackers exploit critical React Native Metro bug to breach dev systemsReddit : Hackers exploit critical React Native Metro bug to breach dev systemsTelegram : Hackers exploit critical React Native Metro bug to breach dev systemsWhatsApp : Hackers exploit critical React Native Metro bug to breach dev systemsEmail : Hackers exploit critical React Native Metro bug to breach dev systems
AI Agents
03
Feb
2026

A New Security Control Plane for CISOs

By Ido Shlomo, CTO and Co-Founder, Token Security Security leaders have spent years hardening identity controls for employees and service…

Share: X : A New Security Control Plane for CISOsFacebook : A New Security Control Plane for CISOsLinkedin : A New Security Control Plane for CISOsReddit : A New Security Control Plane for CISOsTelegram : A New Security Control Plane for CISOsWhatsApp : A New Security Control Plane for CISOsEmail : A New Security Control Plane for CISOs
UK ICO
03
Feb
2026

UK privacy watchdog probes Grok over AI-generated sexual images

The United Kingdom’s data protection authority launched a formal investigation into X and its Irish subsidiary over reports that the…

Share: X : UK privacy watchdog probes Grok over AI-generated sexual imagesFacebook : UK privacy watchdog probes Grok over AI-generated sexual imagesLinkedin : UK privacy watchdog probes Grok over AI-generated sexual imagesReddit : UK privacy watchdog probes Grok over AI-generated sexual imagesTelegram : UK privacy watchdog probes Grok over AI-generated sexual imagesWhatsApp : UK privacy watchdog probes Grok over AI-generated sexual imagesEmail : UK privacy watchdog probes Grok over AI-generated sexual images
X (formerly known as Twitter)
03
Feb
2026

French prosecutors raid X offices, summon Musk over Grok deepfakes

French prosecutors have raided X’s offices in Paris on Tuesday as part of a criminal investigation into the platform’s Grok…

Share: X : French prosecutors raid X offices, summon Musk over Grok deepfakesFacebook : French prosecutors raid X offices, summon Musk over Grok deepfakesLinkedin : French prosecutors raid X offices, summon Musk over Grok deepfakesReddit : French prosecutors raid X offices, summon Musk over Grok deepfakesTelegram : French prosecutors raid X offices, summon Musk over Grok deepfakesWhatsApp : French prosecutors raid X offices, summon Musk over Grok deepfakesEmail : French prosecutors raid X offices, summon Musk over Grok deepfakes
New GlassWorm attack targets macOS via compromised OpenVSX extensions
03
Feb
2026

New GlassWorm attack targets macOS via compromised OpenVSX extensions

A new GlassWorm malware attack through compromised OpenVSX extensions focuses on stealing passwords, crypto-wallet data, and developer credentials and configurations from…

Share: X : New GlassWorm attack targets macOS via compromised OpenVSX extensionsFacebook : New GlassWorm attack targets macOS via compromised OpenVSX extensionsLinkedin : New GlassWorm attack targets macOS via compromised OpenVSX extensionsReddit : New GlassWorm attack targets macOS via compromised OpenVSX extensionsTelegram : New GlassWorm attack targets macOS via compromised OpenVSX extensionsWhatsApp : New GlassWorm attack targets macOS via compromised OpenVSX extensionsEmail : New GlassWorm attack targets macOS via compromised OpenVSX extensions
Microsoft Office
03
Feb
2026

Russian hackers exploit recently patched Microsoft Office bug in attacks

Ukraine’s Computer Emergency Response Team (CERT) says that Russian hackers are exploiting CVE-2026-21509, a recently patched vulnerability in multiple versions of…

Share: X : Russian hackers exploit recently patched Microsoft Office bug in attacksFacebook : Russian hackers exploit recently patched Microsoft Office bug in attacksLinkedin : Russian hackers exploit recently patched Microsoft Office bug in attacksReddit : Russian hackers exploit recently patched Microsoft Office bug in attacksTelegram : Russian hackers exploit recently patched Microsoft Office bug in attacksWhatsApp : Russian hackers exploit recently patched Microsoft Office bug in attacksEmail : Russian hackers exploit recently patched Microsoft Office bug in attacks
Malicious MoltBot skills used to push password-stealing malware
02
Feb
2026

Malicious MoltBot skills used to push password-stealing malware

More than 230 malicious packages for the personal AI assistant OpenClaw (formerly known as Moltbot and ClawdBot) have been published in…

Share: X : Malicious MoltBot skills used to push password-stealing malwareFacebook : Malicious MoltBot skills used to push password-stealing malwareLinkedin : Malicious MoltBot skills used to push password-stealing malwareReddit : Malicious MoltBot skills used to push password-stealing malwareTelegram : Malicious MoltBot skills used to push password-stealing malwareWhatsApp : Malicious MoltBot skills used to push password-stealing malwareEmail : Malicious MoltBot skills used to push password-stealing malware
Mozilla Firefox
02
Feb
2026

Mozilla announces switch to disable all Firefox AI features

In response to user feedback on AI integration, Mozilla announced today that the next Firefox release will let users disable…

Share: X : Mozilla announces switch to disable all Firefox AI featuresFacebook : Mozilla announces switch to disable all Firefox AI featuresLinkedin : Mozilla announces switch to disable all Firefox AI featuresReddit : Mozilla announces switch to disable all Firefox AI featuresTelegram : Mozilla announces switch to disable all Firefox AI featuresWhatsApp : Mozilla announces switch to disable all Firefox AI featuresEmail : Mozilla announces switch to disable all Firefox AI features
Windows
02
Feb
2026

January update shutdown bug affects more Windows PCs

Microsoft has confirmed that a known issue preventing some Windows 11 devices from shutting down also affects Windows 10 systems…

Share: X : January update shutdown bug affects more Windows PCsFacebook : January update shutdown bug affects more Windows PCsLinkedin : January update shutdown bug affects more Windows PCsReddit : January update shutdown bug affects more Windows PCsTelegram : January update shutdown bug affects more Windows PCsWhatsApp : January update shutdown bug affects more Windows PCsEmail : January update shutdown bug affects more Windows PCs
HYIP header
02
Feb
2026

CTM360 Report Warns of Global Surge in Fake High-Yield Investment Scams

Fraudulent High-Yield Investment Programs (HYIPs) are surging globally, pushing “guaranteed” profits that no legitimate investment can sustain. These scams lure…

Share: X : CTM360 Report Warns of Global Surge in Fake High-Yield Investment ScamsFacebook : CTM360 Report Warns of Global Surge in Fake High-Yield Investment ScamsLinkedin : CTM360 Report Warns of Global Surge in Fake High-Yield Investment ScamsReddit : CTM360 Report Warns of Global Surge in Fake High-Yield Investment ScamsTelegram : CTM360 Report Warns of Global Surge in Fake High-Yield Investment ScamsWhatsApp : CTM360 Report Warns of Global Surge in Fake High-Yield Investment ScamsEmail : CTM360 Report Warns of Global Surge in Fake High-Yield Investment Scams