![[tl;dr sec] #306 - Claude Code's Hacking Campaign, Rust in Android, Secrets Scanners Miss](https://image.cybernoz.com/wp-content/uploads/2025/11/tldr-sec-306-Claude-Codes-Hacking-Campaign-Rust-in.png){kind=small}
[tl;dr sec] #306 – Claude Code’s Hacking Campaign, Rust in Android, Secrets Scanners Miss
I hope you’ve been doing well! I’m stoked to announce I’ll be doing a webinar with my friend Daniel Miessler on his epic AI setup.…
Latest Cybersecurity News — Page 1254
View all →
Researchers warn command injection flaw in Fortinet FortiWeb is under exploitation
Researchers are warning about an operating system command injection vulnerability in Fortinet FortiWeb just days after the company confirmed exploitation of a separate critical vulnerability…
New SonicWall SonicOS flaw allows hackers to crash firewalls
American cybersecurity company SonicWall urged customers today to patch a high-severity SonicOS SSLVPN security flaw that can allow attackers to crash vulnerable firewalls. Tracked as…
Samourai Wallet Cryptocurrency Mixing Founders Jailed for Laundering Over $237 Million
The U.S. Attorney’s Office, Southern District of New York, has announced the sentencing of Keonne Rodriguez and William Lonergan Hill, co-founders of Samourai Wallet, a…
Security gap in Perplexity’s Comet browser exposed users to system-level attacks
There is a serious security problem inside Comet, the AI-powered agentic browser made by Perplexity, SquareX researchers say: Comet’s MCP API allows the browser’s built-in…
Swedish welfare authorities suspend ‘discriminatory’ AI model
A “discriminatory” artificial intelligence (AI) model used by Sweden’s social security agency to flag people for benefit fraud investigations has been suspended, following an intervention…
Sturnus Banking Malware Steals Communications from Signal and WhatsApp, Gaining Full Control of The Device
A new banking malware called Sturnus has emerged as a significant threat to mobile users across Europe. Security researchers have discovered that this sophisticated Android…
Oligo delivers runtime-native security for models and agents
Oligo Security announced new capabilities to protect the broadest spectrum of AI deployments, including AI applications, LLMs, and agentic AI. The new platform modules address…
Gmail can read your emails and attachments to train its AI, unless you opt out
Under the radar, Google has added features that allow Gmail to access all private messages and attachments for training its AI models. If you use…
Tsundere Botnet Abusing Popular Node.js and Cryptocurrency Packages to Attack Windows, Linux, and macOS Users
Tsundere represents a significant shift in botnet tactics, leveraging the power of legitimate Node.js packages and blockchain technology to distribute malware across multiple operating systems.…
7-Zip RCE Vulnerability Actively Exploited by Hackers
Cybersecurity researchers have reported active exploitation of a critical vulnerability in 7-Zip, the popular file compression software used by millions worldwide. The flaw, tracked as…
Everything You Always Wanted To Know About Security Audits But Were Afraid To Ask
20 Nov Everything You Always Wanted To Know About Security Audits But Were Afraid To Ask Posted at 08:33h in Blogs by Taylor Fox This…