1010.cx

1010.cx

/

Archive

/

Category: Security

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

pretalx XSS flaw lets attackers hijack conference organizer accounts, steal sessions, auto-accept talks, and demote admins. Patched in v2026.1.0.

·

cybersecurity, JavaScript, Novee Security, pretalx, Security, vulnerability, xss, Zero-Click

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives

Hackers are using fake purchase order emails and process hollowing to deploy fileless PureLogs malware to steal Windows users’ browser, crypto, and Discord data.

·

Cyber Attack, cybersecurity, Fileless, Fraud, Malware, Phishing Scam, PureLogs, SCAM, Scams and Fraud, Security, Windows

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens

A malicious Codex UI npm package with 27,000 weekly downloads was caught exfiltrating OpenAI refresh tokens, exposing developers to account takeover risks.

·

Android, Artificial Intelligence, Codex UI, cybersecurity, GitHib, npm, OpenAI, OpenAI Codex, SCAM, Security, typosquatting

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Fake Anthropic Sites Deliver Fileless Infostealer to Claude Code Users

Fake Anthropic websites are being used to target Claude Code users with a fileless infostealer campaign that steals browser credentials and evades detection.

·

AI, Artificial Intelligence, Claude Code, Cyber Attack, cybersecurity, Developers, Fileless, Infostealer, Malware, Scams and Fraud, Security, SEO Poisoning

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
The Deliverability Problem: How New Platforms Are Solving Inbox Placement

Email still reaches more people than any other digital channel. Getting it to actually land in the inbox…

·

Security

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Iran’s Nimbus Manticore hackers used trojanized Zoom installers to deploy malware against US firms during a wider IRGC linked cyber campaign.

·

CPR, Cyber Attack, Cyber-Attacks, cybersecurity, Iran, Malware, MiniFast, Nimbus Manticore, SCAM, Security, UNC1549

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
How Can MSSPs Scale Threat Detection Without Burning Out Their Analysts?

Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.

·

ANY.RUN, cybersecurity, Sandbox, Security, Threat Analysis, Threat Detection, Threat Intelligence

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning

Cybercriminals are using SEO poisoning and fake Gemini and Claude installer sites to infect developers with fileless malware and steal data.

·

Claude, Cyber Attack, cybersecurity, Developers, EclecticIQ, Gemini, Malware, Scams and Fraud, Security, SEO Poisoning, TROJAN

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Claude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month

Anthropic says its Claude Mythos AI identified more than 10,000 software vulnerabilities in one month, including critical flaws in open-source code.

·

AI, Anthropic, Artificial Intelligence, Claude, cybersecurity, Mythos AI, Project Glasswing, Security, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
FBI Chief Kash Patel’s Clothing Store Hacked in ClickFix Infostealer Attack

Hackers compromised FBI Chief Kash Patel’s clothing store in a ClickFix attack that tricked macOS users into installing infostealer malware.

·

ClickFix, Cloudflare, Cyber Attack, Cyber-Attacks, cybersecurity, FBI, Hacking News, Infostealer, Kash Patel, Malware, Security

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶