Follow on Google News
Anthropic ends Claude subscription access for OpenClaw and other third-party tools
Anthropic has officially stopped letting Claude Pro and Max subscribers use their flat-rate subscription limits with third-party agent tools such as OpenClaw. Starting April 4,…
Adobe breach claim puts 13 million support tickets and employee records in focus
Adobe has not publicly confirmed a new breach, but a threat actor calling himself “Mr. Raccoon” claims to have stolen 13 million support tickets, about…
North Korea-linked hackers hide phishing command traffic inside GitHub in new LNK attacks
A newly disclosed cyber campaign tied to North Korea-linked threat activity uses Windows shortcut files, or LNK files, to target organizations in South Korea while…
North Korea-linked hackers likely used the Axios npm compromise to deliver a cross-platform RAT
The Axios npm compromise now appears tied to a North Korea-linked threat cluster, according to multiple security vendors. CrowdStrike attributed the activity to STARDUST CHOLLIMA…
CERT-EU says Trivy supply chain attack helped lead to European Commission AWS breach
The European Commission’s cloud breach now appears tied to the Trivy supply chain compromise, according to CERT-EU. In a detailed incident write-up, CERT-EU said a…
700+ Next.js hosts hit in React2Shell campaign as attackers steal cloud and database secrets
A large-scale credential theft campaign has compromised more than 700 internet-facing hosts by exploiting React2Shell, the remote code execution flaw tracked as CVE-2025-55182. Cisco Talos…
Multiple TP-Link Tapo C520WS flaws can let nearby attackers crash cameras or bypass auth
TP-Link has disclosed several high-severity vulnerabilities affecting the Tapo C520WS v2.6 smart camera, and the most serious one can let an unauthenticated attacker on the…
Microsoft has started automatically moving unmanaged Windows 11 24H2 PCs to 25H2
Microsoft has expanded the Windows 11 25H2 rollout to all eligible unmanaged PCs running Windows 11 version 24H2 Home and Pro. In its Windows Release…
Venom Stealer turns ClickFix pages into a full data theft pipeline, researchers say
Venom Stealer is a malware-as-a-service tool that uses ClickFix social engineering pages to trick victims into launching the infection themselves. BlackFog says the platform goes…
Phorpiex botnet keeps evolving as operators push ransomware, sextortion, and crypto-clipping malware
The Phorpiex botnet is not new, but it remains highly active and adaptable. New research from BitSight says the long-running botnet, also known as Trik,…
November 21, 2025
1 comment 
