Follow on Google News
Hackers abuse Claude.ai shared chats to spread ClickFix instructions and MacSync malware
Hackers abused Claude.ai shared chat links to host ClickFix social engineering instructions that tricked macOS users into running malicious Terminal commands. The campaign used Google…
Cisco warns of critical ISE flaw that can let admins execute code remotely
Cisco has patched two serious vulnerabilities in Cisco Identity Services Engine and Cisco ISE Passive Identity Connector, including a critical remote code execution flaw that…
Hackers abuse exposed Ollama servers to power autonomous hacking tools
Hackers are abusing exposed Ollama model servers to power automated hacking tools without paying for AI compute. Researchers at Sysdig observed an attacker using a…
Hackers abuse Microsoft Fondue.exe to side-load APPWIZ.cpl and deploy Sliver malware
Threat actors are abusing Microsoft’s legitimate Fondue.exe utility to side-load a malicious APPWIZ.cpl file and execute malware on Windows systems. The campaign uses fake software…
SQL Server 2025 AI features can be abused for data theft and covert command channels
Security researchers have shown how Microsoft SQL Server 2025’s new AI and external endpoint features can be abused after a database server is compromised. The…
Firefox 152 fixes high-severity security flaws that could lead to code execution
Mozilla has released Firefox 152 with fixes for multiple high-severity security vulnerabilities, including memory safety bugs, use-after-free flaws, privilege escalation issues, and sandbox escape weaknesses.…
Klue breach exposes Salesforce CRM data through stolen OAuth tokens
Attackers used a compromised Klue integration to access Salesforce CRM data from multiple organizations, turning a trusted SaaS connection into a data theft channel. The…
New usbliter8 BootROM exploit affects older Apple A12 and A13 devices
Security researchers at Paradigm Shift have disclosed usbliter8, a new BootROM exploit affecting Apple devices using A12, S4/S5, and A13 chips. The vulnerability targets the…
SocGholish Malware Network Disrupted as Operation Endgame Cleans Nearly 15,000 WordPress Sites
International law enforcement agencies have disrupted the SocGholish malware network, taking 106 servers and domains offline and cleaning 14,971 infected websites. The action was announced…
Ghostwriter Hackers Target Gmail Users With Fake Admin Alerts to Steal Passwords and 2FA Codes
The UNC1151/Ghostwriter threat group is targeting Gmail users with fake Google administrator emails designed to steal passwords and two-factor authentication codes. According to CERT Polska,…
February 10, 2026
1 comment 
