15,200 OpenClaw Control Panels with Full System Access Exposed to Internet
OpenClaw Control Panels Exposed A critical security failure in the rapidly adopting “agentic AI” ecosystem has left tens of thousands of personal and corporate AI…
Latest Cybersecurity News — Page 416
View all →
European Commission Contains Cyber-Attack Targeting Staff Mobile Data
European Commission Cyber-Attack The European Commission has confirmed the detection and containment of a security incident affecting the central infrastructure that manages staff mobile devices.…
Department of Comms reveals text-based triple zero pilot is close
The federal government has revealed that it is working on establishing a technical trial that could lead to the establishment of Australia’s first mass adoption…
ScarCruft Abuses Legitimate Cloud Services for C2 and OLE-based Chain to Drop Malware
ScarCruft, a prolific North Korean-backed advanced persistent threat (APT) group, has significantly refined its cyberespionage capabilities in a newly identified campaign distributing the ROKRAT malware.…
New RecoverIt Tool Abuses Windows Service Failure Recovery to Execute Malicious Payloads
A new offensive security tool named “RecoverIt” has been released, offering red teamers a stealthy method for lateral movement and persistence by abusing the Windows…
Cyber security awareness initiative for Australian parliamentarians
The National Industry Innovation Network has launched a new cyber security awareness initiative for Australian parliamentarians, aimed at strengthening resilience within the parliamentary environment as…
New Node.js Based LTX Stealer Attackers Users to Exfiltrate Login Credentials
A sophisticated new malware strain dubbed “LTX Stealer” has emerged in the cyber threat landscape, utilizing a unique Node.js-based architecture to compromise Windows systems. First…
Hackers Abuse ClawHub Skills to Evade VirusTotal via Social Engineering
A new evolution in ClawHub skill-based attacks that effectively sidesteps recent security measures. Rather than embedding base64-encoded payloads directly in SKILL.md files, threat actors have…
TikTok under EU pressure to change its addictive algorithm
The European Commission has issued preliminary findings that say TikTok breaches the Digital Services Act due to its addictive design. The Commission opened a formal…
Exchange Online flags legitimate emails as phishing
Microsoft is investigating an ongoing Exchange Online issue that mistakenly flags legitimate emails as phishing and quarantines them. The incident began on February 5 and…
Roundcube Webmail Vulnerability Let Attackers Track Email Opens
Roundcube Webmail Vulnerability Roundcube, one of the world’s most popular open-source webmail solutions, has released critical security updates to address a privacy bypass vulnerability. The…
ScarCruft Exploits Trusted Cloud Services and OLE Documents to Deliver Malware
The North Korean-backed advanced persistent threat (APT) group known as ScarCruft has significantly evolved its attack techniques. In a departure from their established methods, the…