38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
Cybersecurity researchers have exposed what they say is an "industrial-scale, global cryptocurrency phishing operation" engineered to steal digital assets from cryptocurrency wallets for several...
Qilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstream – Sophos News
Late in January 2025, a Managed Service Provider (MSP) administrator received a well-crafted phishing email containing what appeared to be an authentication alert for...
Outlaw botnet detected in an incident contained by Kaspersky
Introduction
In a recent incident response case in Brazil, we dealt with a relatively simple, yet very effective threat focused on Linux environments. Outlaw (also...
“Mirai” Now Exploits Samsung MaginINFO CMS (CVE-2024-7399)
Last August, Samsung patched an arbitrary file upload vulnerability that could lead to remote code execution . The announcement was very sparse and did...
xAI Dev Leaks API Key for Private SpaceX, Tesla LLMs – Krebs on Security
An employee at Elon Musk’s artificial intelligence company xAI leaked a private key on GitHub that for the past two months could have allowed anyone...
Hacking hijinks at the hospital, and WASPI scams • Graham Cluley
He’s not a pop star, but Jeffrey Bowie is alleged to have toured staff areas of...
