AI Bug Reports Overwhelm Linux Security Mailing List
Linus Torvalds says AI-generated bug reports are flooding Linux security mailing lists, making them “almost entirely unmanageable.” New rules incoming.
Read More
One Provider Hosts Most Middle East C2 Servers
A new investigation reveals that one telecommunications provider has been hosting the majority of active command-and-control (C2) servers operating across the Middle East. This concentration of malicious infrastructure under a single provider raises significant questions about infrastructure abuse,
Critical Chrome Bugs Allow Remote Code Execution
Google has released an emergency security update for Chrome addressing multiple critical vulnerabilities, including CVE-2025-0411 and CVE-2025-0410, which could allow remote attackers to execute arbitrary code on affected systems. These high-severity bugs affect Chrome’s V8 JavaScript engine and ANG
OpenAI Hit By npm Supply Chain Attack Via Malware
OPENAI EMPLOYEE DEVICES COMPROMISED IN ATTACK Malware-laden npm packages infected two OpenAI staff machines, stealing internal credentials. Supply chain attacks continue to threaten even the most security-conscious organizations. Audit all npm dependencies and rotate credentials immediately. Severity: High Target: JavaScript developers and enterprises
Ghost CMS Exploited In Massive ClickFix Campaign
A critical SQL injection vulnerability in Ghost CMS is being actively exploited in a widespread ClickFix social engineering campaign. Attackers are compromising Ghost-powered websites to inject malicious scripts that display fake error messages, tricking users into executing PowerShell commands that
Linux Kernel Flaw Exposes Root-Only Files To All Users
Linux kernel flaw lets unprivileged users access root-only files. A critical vulnerability breaks fundamental security boundaries. Patch immediately.
OpenAI Confirms Breach In TanStack Supply Chain Attack
OpenAI confirms employee devices compromised in TanStack supply chain attack. Code-signing certificates rotated after breach affected hundreds of npm and PyPI packages.
FBI Director’s Website Taken Down After Malware Attack
The personal website of FBI Director Kash Patel was abruptly taken offline following reports of malware infections targeting visitors. The site, which served as Patel’s brand platform, reportedly distributed malicious code that triggered security alerts across multiple antivirus solutions. The incid
Pentagon Labels Advanced AI Revolutionary Warfare
Pentagon cyber official labels advanced AI as revolutionary warfare—a stark warning about how artificial intelligence is fundamentally transforming military conflicts
Dutch Authorities Disrupt Botnet Of 17 Million Devices
Dutch law enforcement, in collaboration with international partners, has successfully disrupted one of the largest botnets ever recorded, comprising approximately 17 million infected devices worldwide. The operation targeted malware infrastructure that had compromised routers, IoT devices, and netwo