π¦Ώ Android Phones Get AI-Powered Anti-Theft Features π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Enhanced lockouts and stronger remote locking aim to make stolen devices far harderand less profitablefor criminals. The post Android Phones Get AIPowered AntiTheft Features appeared first on TechRepublic.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Android Phones Get AI-Powered Anti-Theft Features
Enhanced lockouts and stronger remote locking aim to make stolen devices far harderβand less profitableβfor criminals.
ποΈ Google Disrupts IPIDEA β One of the Worldβs Largest Residential Proxy Networks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google on Wednesday announced that it worked together with other partners to disrupt IPIDEA, which it described as one of the largest residential proxy networks in the world. To that end, the company said it took legal action to take down dozens of domains used to control devices and proxy traffic through them. As of writing, IPIDEA's website "www.ipidea.io" is no longer accessible. It.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have flagged a new malicious Microsoft Visual Studio Code VS Code extension for Moltbot formerly Clawdbot on the official Extension Marketplace that claims to be a free artificial intelligence AI coding assistant, but stealthily drops a malicious payload on compromised hosts. The extension, named "ClawdBot Agent AI Coding Assistant" "clawdbot.clawdbotagent".π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Russian ELECTRUM Tied to December 2025 Cyber Attack on Polish Power Grid ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The "coordinated" cyber attack targeting multiple sites across the Polish power grid has been attributed with medium confidence to a Russian statesponsored hacking crew known as ELECTRUM. Operational technology OT cybersecurity company Dragos, in a new intelligence brief published Tuesday, described the late December 2025 activity as the first major cyber attack targeting distributed energy.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed two new security flaws in the n8n workflow automation platform, including a crucial vulnerability that could result in remote code execution. The weaknesses, discovered by the JFrog Security Research team, are listed below CVE20261470 CVSS score 9.9 An eval injection vulnerability that could allow an authenticated user to bypass the Expression.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ From Triage to Threat Hunts: How AI Accelerates SecOps ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
If you work in security operations, the concept of the AI SOC agent is likely familiar. Early narratives promised total autonomy. Vendors seized on the idea of the "Autonomous SOC" and suggested a future where algorithms replaced analysts. That future has not arrived. We have not seen mass layoffs or empty security operations centers. We have instead seen the emergence of a practical reality.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating system. The vulnerability, tracked as CVE202622709, carries a CVSS score of 9.8 out of 10.0 on the CVSS scoring system. "In vm2 for version 3.10.0, Promise.prototype.then Promise.prototype.catch.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Threat actors with ties to China have been observed using an updated version of a backdoor called COOLCLIENT in cyber espionage attacks in 2025 to facilitate comprehensive data theft from infected endpoints. The activity has been attributed to Mustang Panda aka Earth Preta, Fireant, HoneyMyte, Polaris, and Twill Typhoon with the intrusions primarily directed against government entities located.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Password Reuse in Disguise: An Often-Missed Risky Workaround ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
When security teams discuss credentialrelated risk, the focus typically falls on threats such as phishing, malware, or ransomware. These attack methods continue to evolve and rightly command attention. However, one of the most persistent and underestimated risks to organizational security remains far more ordinary. Nearidentical password reuse continues to slip past security controls, often.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088 ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google on Tuesday revealed that multiple threat actors, including nationstate adversaries and financially motivated groups, are exploiting a nowpatched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads. "Discovered and patched in July 2025, governmentbacked threat actors linked to Russia and China as well as financially motivated.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have discovered two malicious packages in the Python Package Index PyPI repository that masquerade as spellcheckers but contain functionality to deliver a remote access trojan RAT. The packages, named spellcheckerpy and spellcheckpy, are no longer available on PyPI, but not before they were collectively downloaded a little over 1,000 times. "Hidden inside the Basque.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Fortinet Patches CVE-2026-24858 After Active FortiOS SSO Exploitation Detected ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Fortinet has begun releasing security updates to address a critical flaw impacting FortiOS that has come under active exploitation in the wild. The vulnerability, assigned the CVE identifier CVE202624858 CVSS score 9.4, has been described as an authentication bypass related to FortiOS single signon SSO. The flaw also affects FortiManager and FortiAnalyzer. The company said it's.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan π
π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
ESET researchers discover an Android spyware campaign targeting users in Pakistan via romance scam tactics, revealing links to a broader spy operation.π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
Welivesecurity
Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan
ESET researchers discover an Android spyware campaign targeting users in Pakistan via romance scam tactics, revealing links to a broader spy operation.
π Cybersecurity Teams Embrace AI, Just Not at the Scale Marketing Suggests π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Despite the seemingly widespread adoption of AI for security operations, security leaders primarily use it for relatively basic use cases, said a Sumo Logic study.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Autonomous System Uncovers Long-Standing OpenSSL Flaws π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A recent update has fixed 12 vulnerabilities in OpenSSL, some existing in the codebase for years.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Critical and High Severity n8n Sandbox Flaws Allow RCE π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Emojis in PureRATβs Code Point to AI-Generated Malware Campaign π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Researchers discover that PureRATs code now contains emojis indicating it has been written by AI basedon comments ripped from social media.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π AI Security Threats Loom as Enterprise Usage Jumps 91% π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Zscaler analysts found critical vulnerabilities in 100 of enterprise AI systems, with 90 compromised in under 90 minutes.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Researchers Uncover 454,000+ Malicious Open Source Packages π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Sonatype warns that open source threats became industrialized with a surge in malicious packages in 2025.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Chinese Money Launderers Drive Global Ecosystem Worth $82bn π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Chainalysis claims Chinese money launderers now account for 20 of global activity.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π¦
The Week in Vulnerabilities: Cyble Urges Oracle, OpenStack Fixes π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble Vulnerability Intelligence researchers tracked 1,031 vulnerabilities in the last week, and nearly 200 already have a publicly available ProofofConcept PoC, significantly increasing the likelihood of realworld attacks on those vulnerabilities. A total of 72 vulnerabilities were rated as critical under the CVSS v3.1 scoring system, while 33 received a critical severity rating based on the newer CVSS v4.0 scoring system. Below are some of the vulnerabilities flagged by Cyble threat intelligence researchers for prioritization by security teams in recent reports to clients. The Weeks Top IT Vulnerabilities CVE202621969 is a 9.8severity vulnerability in Oracle Agile Product Lifecycle Management for Process, specifically in the Supplier Portal component of Oracle Supply Cha...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Cyble Week In Vulnerabilities: Oracle, OpenStack Urgent Fixes
Cyble tracked 1,031 new vulnerabilities last week, including critical flaws in Oracle, OpenStack, SAP, Salesforce, and ServiceNow.