The Hacker News

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

UNC4899 breached a crypto firm via AirDrop malware and cloud exploitation in 2025, stealing millions through Kubernetes and Cloud SQL abuse.

Google: Cloud attacks exploit flaws more than weak credentials

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

Cybercriminals are using AI to attack the cloud faster - and third-party software is the weak link

Google's latest threat report warns that third-party tools are now prime targets for attackers - and businesses have only days to secure them.
OfficeChai

Andrej Karpathy’s Autoresearch Project Lets Agents Run 100 AI Research Experiments While You Sleep

It has long been said that AI automating AI research could be how humanity hits the singularity, and there are early signs ...
The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
RMD Open

Distinct pattern of comorbidities hinders treatment target attainment in SLE through persistent disease activity and delayed glucocorticoid tapering: longitudinal data fro…

Background Remission and low-disease activity are recommended targets in systemic lupus erythematosus (SLE), yet many ...
Infosecurity-magazine.com

Infosecurity Magazine

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.