Category: Bleeping Computer

New Android malware uses AI to click on hidden browser ads
22
Jan
2026

New Android malware uses AI to click on hidden browser ads

A new family of Android click-fraud trojans leverages TensorFlow machine learning models to automatically detect and interact with specific advertisement…

Share: X : New Android malware uses AI to click on hidden browser adsFacebook : New Android malware uses AI to click on hidden browser adsLinkedin : New Android malware uses AI to click on hidden browser adsReddit : New Android malware uses AI to click on hidden browser adsTelegram : New Android malware uses AI to click on hidden browser adsWhatsApp : New Android malware uses AI to click on hidden browser adsEmail : New Android malware uses AI to click on hidden browser ads
Email spam
22
Jan
2026

Zendesk ticket systems hijacked in massive global spam wave

People worldwide are being targeted by a massive spam wave originating from unsecured Zendesk support systems, with victims reporting receiving…

Share: X : Zendesk ticket systems hijacked in massive global spam waveFacebook : Zendesk ticket systems hijacked in massive global spam waveLinkedin : Zendesk ticket systems hijacked in massive global spam waveReddit : Zendesk ticket systems hijacked in massive global spam waveTelegram : Zendesk ticket systems hijacked in massive global spam waveWhatsApp : Zendesk ticket systems hijacked in massive global spam waveEmail : Zendesk ticket systems hijacked in massive global spam wave
Cisco
22
Jan
2026

Cisco fixes Unified Communications RCE zero day exploited in attacks

Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-2026-20045, that has been actively…

Share: X : Cisco fixes Unified Communications RCE zero day exploited in attacksFacebook : Cisco fixes Unified Communications RCE zero day exploited in attacksLinkedin : Cisco fixes Unified Communications RCE zero day exploited in attacksReddit : Cisco fixes Unified Communications RCE zero day exploited in attacksTelegram : Cisco fixes Unified Communications RCE zero day exploited in attacksWhatsApp : Cisco fixes Unified Communications RCE zero day exploited in attacksEmail : Cisco fixes Unified Communications RCE zero day exploited in attacks
Hacker
22
Jan
2026

Chainlit AI framework bugs let hackers breach cloud environments

Two high-severity vulnerabilities in Chainlit, a popular open-source framework for building conversational AI applications, allow reading any file on the…

Share: X : Chainlit AI framework bugs let hackers breach cloud environmentsFacebook : Chainlit AI framework bugs let hackers breach cloud environmentsLinkedin : Chainlit AI framework bugs let hackers breach cloud environmentsReddit : Chainlit AI framework bugs let hackers breach cloud environmentsTelegram : Chainlit AI framework bugs let hackers breach cloud environmentsWhatsApp : Chainlit AI framework bugs let hackers breach cloud environmentsEmail : Chainlit AI framework bugs let hackers breach cloud environments
Online retailer PcComponentes says data breach claims are fake
22
Jan
2026

Online retailer PcComponentes says data breach claims are fake

PcComponentes, a major technology retailer in Spain, has denied claims of a data breach on its systems impacting 16 million…

Share: X : Online retailer PcComponentes says data breach claims are fakeFacebook : Online retailer PcComponentes says data breach claims are fakeLinkedin : Online retailer PcComponentes says data breach claims are fakeReddit : Online retailer PcComponentes says data breach claims are fakeTelegram : Online retailer PcComponentes says data breach claims are fakeWhatsApp : Online retailer PcComponentes says data breach claims are fakeEmail : Online retailer PcComponentes says data breach claims are fake
Fortinet
21
Jan
2026

Fortinet admins report patched FortiGate firewalls getting hacked

Fortinet customers are seeing attackers exploiting a patch bypass for a previously fixed critical FortiGate authentication vulnerability (CVE-2025-59718) to hack…

Share: X : Fortinet admins report patched FortiGate firewalls getting hackedFacebook : Fortinet admins report patched FortiGate firewalls getting hackedLinkedin : Fortinet admins report patched FortiGate firewalls getting hackedReddit : Fortinet admins report patched FortiGate firewalls getting hackedTelegram : Fortinet admins report patched FortiGate firewalls getting hackedWhatsApp : Fortinet admins report patched FortiGate firewalls getting hackedEmail : Fortinet admins report patched FortiGate firewalls getting hacked
LastPass theft
21
Jan
2026

Fake Lastpass emails pose as password vault backup alerts

LastPass is warning of a new phishing campaign disguised as a maintenance notification from the service, asking users to back…

Share: X : Fake Lastpass emails pose as password vault backup alertsFacebook : Fake Lastpass emails pose as password vault backup alertsLinkedin : Fake Lastpass emails pose as password vault backup alertsReddit : Fake Lastpass emails pose as password vault backup alertsTelegram : Fake Lastpass emails pose as password vault backup alertsWhatsApp : Fake Lastpass emails pose as password vault backup alertsEmail : Fake Lastpass emails pose as password vault backup alerts
GitLab
21
Jan
2026

GitLab warns of high-severity 2FA bypass, denial-of-service flaws

GitLab has patched a high-severity two-factor authentication bypass impacting community and enterprise editions of its software development platform. Tracked as…

Share: X : GitLab warns of high-severity 2FA bypass, denial-of-service flawsFacebook : GitLab warns of high-severity 2FA bypass, denial-of-service flawsLinkedin : GitLab warns of high-severity 2FA bypass, denial-of-service flawsReddit : GitLab warns of high-severity 2FA bypass, denial-of-service flawsTelegram : GitLab warns of high-severity 2FA bypass, denial-of-service flawsWhatsApp : GitLab warns of high-severity 2FA bypass, denial-of-service flawsEmail : GitLab warns of high-severity 2FA bypass, denial-of-service flaws
New VoidLink malware framework targets Linux cloud servers
21
Jan
2026

Hackers exploit security testing apps to breach Fortune 500 firms

Threat actors are exploiting misconfigured web applications used for security training and internal penetration testing, such as DVWA, OWASP Juice Shop,…

Share: X : Hackers exploit security testing apps to breach Fortune 500 firmsFacebook : Hackers exploit security testing apps to breach Fortune 500 firmsLinkedin : Hackers exploit security testing apps to breach Fortune 500 firmsReddit : Hackers exploit security testing apps to breach Fortune 500 firmsTelegram : Hackers exploit security testing apps to breach Fortune 500 firmsWhatsApp : Hackers exploit security testing apps to breach Fortune 500 firmsEmail : Hackers exploit security testing apps to breach Fortune 500 firms
Outlook
21
Jan
2026

Microsoft shares workaround for Outlook freezes after Windows update

Microsoft shared a temporary workaround for customers experiencing Outlook freezes after installing this month’s Windows security updates. As explained one…

Share: X : Microsoft shares workaround for Outlook freezes after Windows updateFacebook : Microsoft shares workaround for Outlook freezes after Windows updateLinkedin : Microsoft shares workaround for Outlook freezes after Windows updateReddit : Microsoft shares workaround for Outlook freezes after Windows updateTelegram : Microsoft shares workaround for Outlook freezes after Windows updateWhatsApp : Microsoft shares workaround for Outlook freezes after Windows updateEmail : Microsoft shares workaround for Outlook freezes after Windows update
Email with a phishing hook
21
Jan
2026

You Got Phished? Of Course! You’re Human…

Phishing succeeds not because users are careless, but because attackers exploit human timing, context, and emotion. Flare shows how modern…

Share: X : You Got Phished? Of Course! You’re Human…Facebook : You Got Phished? Of Course! You’re Human…Linkedin : You Got Phished? Of Course! You’re Human…Reddit : You Got Phished? Of Course! You’re Human…Telegram : You Got Phished? Of Course! You’re Human…WhatsApp : You Got Phished? Of Course! You’re Human…Email : You Got Phished? Of Course! You’re Human…
Pwn2Own
21
Jan
2026

Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026

Security researchers have hacked the Tesla Infotainment System and earned $516,500 after exploiting 37 zero-days on the first day of…

Share: X : Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026Facebook : Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026Linkedin : Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026Reddit : Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026Telegram : Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026WhatsApp : Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026Email : Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026