Hackaday

This Week In Security: Linux Flaws, Python Ownage, And A Botnet Shutdown

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...
Infosecurity Magazine

Hackers Exploit Critical Langflow Bug in Just 20 Hours

Sysdig cited figures from the Zero Day Clock initiative which revealed that median time-to-exploit (TTE) collapsed from 771 ...

New Apple Hack: Up to 270M iPhones Vulnerable to ‘DarkSword’ Exploit

Researchers uncover “DarkSword,” a powerful iPhone exploit targeting millions via compromised websites. Learn how it works and how to protect your device.
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.
CNX Software

DSG-22.6 GHz is a $1,590 open-source RF signal generator based on Atek Midas’s custom ICs (Crowdfunding)

Atek Midas, a Turkish company, has launched DSG-22.6 GHz, a high-performance, open-source RF signal generator designed to provide professional-grade ...
Wired

A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals

A highly sophisticated set of iPhone hijacking techniques has likely infected tens of thousands of phones or more. Clues suggest it was originally built for the US government. Security researchers at ...
IEEE

Python Source Code Vulnerability Detection Based on CodeBERT Language Model

Abstract: Programming language source code vulnerability mining is crucial to improving the security of software systems, but current research is mostly focused on the C language field, with little ...
Hosted on MSN

This is what happened when he asked neighbors for their WiFi code

In this social experiment, a man knocks on strangers’ doors and asks for their WiFi password. Some responses are polite, others confused, and a few clearly irritated. The situation escalates when he ...
Dark Reading

DPRK Actors Deploy VS Code Tunnels for Remote Hacking

A spear-phishing campaign by North Korean actors is abusing a legitimate feature of Microsoft Visual Studio (VS) Code to gain full remote control of targeted systems. In the campaign, discovered by ...
CNX Software

M5MonsterC5 hacking tool adds ESP32-C5 and 5 GHz Wi-Fi 6 support to M5Stack Cardputer ADV and Tab5

Developed by Laboratorium in Poland, the M5MonsterC5 is an ESP32-C5-based “Marauder” hacking tool designed to work with M5Stack Cardputer ADV or M5Stack Tab5. It gets connected to the Cardputer ADV or ...
Bleeping Computer

Google links more Chinese hacking groups to React2Shell attacks

Over the weekend, Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the maximum-severity "React2Shell" remote code execution vulnerability. Tracked as CVE ...