Skip to content

1010.cx

  • Laser Attack Resets Tangem Wallet Passwords on Cards That Can’t Be Patched

    ·

    Researchers at Ledger’s Donjon security team have shown that a precisely timed laser pulse, aimed at the chip inside a Tangem crypto wallet card, can reset the card’s password to anything the attacker picks. No old password. No backup card. Once it is reset, whoever did it controls the wallet and can move the coins out. This is not an emergency for most owners. The attack needs

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws

    ·

    Details have emerged about three now-patched security flaws in the OpenClaw personal artificial intelligence (AI) assistant that, if successfully exploited, could enable credential theft, privilege escalation, and arbitrary code execution on the host. A brief description of the high-severity vulnerabilities is as follows – GHSA-hjr6-g723-hmfm (CVSS score: 8.8) – An operating system

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • 281 Android VPN Apps Expose Users to Traffic Leaks, Tracking and Tunnel Hijacking

    ·

    Android, cyber security, Cyber Security News, VPN

    A recent security analysis has revealed that a significant number of Android VPN applications, 281,281,281, expose users to serious privacy and security risks. These risks include traffic leaks, third-party tracking, weak encryption practices, and VPN tunnel hijacking. Android findings highlight a persistent issue in the mobile VPN ecosystem: many applications marketed as privacy tools can […]

    The post 281 Android VPN Apps Expose Users to Traffic Leaks, Tracking and Tunnel Hijacking appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • Cybersecurity Negotiator Gets 70 Months for Helping BlackCat Extort Victims

    ·

    ALPHV, BlackCat, Cyber Attack, Cyber Crime, cybersecurity, Extortion, Fraud, Ransomware
    Former ransomware negotiator Angelo Martino gets 70 months in prison for helping BlackCat extort US victims and misuse confidential client data in cyberattacks.

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic

    ·

    The China-linked cybercrime group known as Silver Fox has been attributed to a new Rust-based remote access trojan (RAR) called MODBEACON. Chinese cybersecurity company QiAnXin said that while the threat cluster may appear like a low-sophistication, high-activity operation that propagates malware via counterfeit installers using SEO poisoning techniques, it belies their true organizational

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • Forg365 PhaaS Uses Telegram and AI Lures to Hijack Microsoft 365 Accounts

    ·

    cyber security, Cyber Security News, Microsoft, Telegram

    Forg365 is a commercial phishing-as-a-service (PhaaS) platform specifically targeting Microsoft 365 users. It employs methods such as device-code phishing, adversary-in-the-middle (AiTM) workflows, AI-assisted lure generation, and token persistence tools. The platform’s onboarding process through Telegram, subscription model, and post-compromise features highlight how identity attacks on Microsoft 365 are becoming increasingly commercialized. Researchers from ZeroBEC have […]

    The post Forg365 PhaaS Uses Telegram and AI Lures to Hijack Microsoft 365 Accounts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • Hackers Exploit CitrixBleed 2 to Hijack MFA-Protected Sessions and Deploy DragonForce Ransomware

    ·

    cyber security, Cyber Security News, Ransomware

    Threat actors are exploiting the CitrixBleed 2 vulnerability, tracked as CVE-2025-5777, to hijack active NetScaler sessions protected by multi-factor authentication and gain a foothold in enterprise environments. The activity indicates a standardized operator playbook, potentially operated by an initial access broker or ransomware affiliate. Victims spanned unrelated organizations and sectors, yet attackers repeatedly used the […]

    The post Hackers Exploit CitrixBleed 2 to Hijack MFA-Protected Sessions and Deploy DragonForce Ransomware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • Linux FUSE Vulnerability Allows Unprivileged Users to Pop a Root Shell

    ·

    CVE/vulnerability, cyber security, Cyber Security News, Linux, vulnerability

    A newly disclosed Linux kernel vulnerability in the FUSE subsystem allows unprivileged local users to escalate privileges to root by corrupting the page cache and hijacking execution of a SUID binary such as /usr/bin/su on Ubuntu 26.04. Tracked as CVE-2026-31694, the flaw affects the FUSE directory-caching logic. It can be exploited to achieve reliable local […]

    The post Linux FUSE Vulnerability Allows Unprivileged Users to Pop a Root Shell appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • Step Into The Business Hall At Black Hat USA 2026

    ·

    Blogs
    This week in cybersecurity from the editors at Cybercrime Magazine

    Sausalito, Calif. – Jul. 10, 2026

    – Watch the video

    The Cybercrime Magazine media team will step into the Business Hall at Black Hat USA in Las Vegas Aug. 2-4 and experience the future of cybersecurity. Where innovation meets collaboration, this dynamic space brings together thousands of security professionals and the world’s top cybersecurity organizations, generating a lively environment for discovery and growth.

    The Business Hall stands at the center of cybersecurity, where the global cybersecurity community converges to connect, engage, network, drive innovation, forge powerful partnerships, and where groundbreaking deals shape tomorrow’s security landscape.

    Cybercrime Magazine is a Media Partner at Black Hat USA and we’ve been promoting the premier event of the year in a series of videos on our award-winning YouTube channel which has more than 1.2 million subscribers and many more viewers globally.

    Step into the future of cybersecurity at Black Hat USA 2026, Aug. 1-6, in Las Vegas. REGISTER Now & Save with the CODE: CYBERCRIME.

    Watch the Black Hat USA 2026 Video



    Cybercrime Magazine is Page ONE for Cybersecurity. Go to any of our sections to read the latest:

    • SCAM. The latest schemes, frauds, and social engineering attacks being launched on consumers globally.
    • NEWS. Breaking coverage on cyberattacks and data breaches, and the most recent privacy and security stories.
    • HACK. Another organization gets hacked every day. We tell you who, what, where, when, and why.
    • VC. Cybersecurity venture capital deal flow with the latest investment activity from various sources around the world.
    • M&A. Cybersecurity mergers and acquisitions including big tech, pure cyber, product vendors and professional services.
    • BLOG. What’s happening at Cybercrime Magazine. Plus the stories that don’t make headlines (but maybe they should).
    • PRESS. Cybersecurity industry news and press releases in real time from the editors at Business Wire.
    • PODCAST. New episodes daily on the Cybercrime Magazine Podcast feature victims, law enforcement, vendors, and cybersecurity experts.
    • RADIO. Tune into WCYB Digital Radio at Cybercrime.Radio, the first and only round-the-clock internet radio station devoted to cybersecurity.

    Contact us to send story tips, feedback and suggestions, and for sponsorship opportunities and custom media productions.

    The post Step Into The Business Hall At Black Hat USA 2026 appeared first on Cybercrime Magazine.

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

  • GNU Guix Vulnerabilities Let Attackers Overwrite Arbitrary Files and Escalate Privileges

    ·

    CVE/vulnerability, cyber security, Cyber Security News, Vulnerabilities

    Security researcher Caleb Ristvedt disclosed the issues on July 222, 202620262026, warning that all GNU Guix installations are affected. Systems running guix-daemon as root face the highest risk because a malicious substitute server or a man-in-the-middle attacker could write files in root-accessible locations, including /etc/passwd. GNU Guix Vulnerabilities The most severe issue affects restore-file, the […]

    The post GNU Guix Vulnerabilities Let Attackers Overwrite Arbitrary Files and Escalate Privileges appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

    ¶¶¶¶¶

1 2 3 … 938
Next Page

1010.cx

cybersecurity / defense / intelligence