GhostPoster Browser Malware Hid for 5 Years With 840,000 Installs

Researchers uncover a 5-year malware campaign using browser extensions on Chrome, Firefox and Edge, relying on hidden payloads and shared infrastructure.

·

Browser, Chrome, Cyber Attack, cybersecurity, Firefox, Koi Security, LayerX, Malware, Microsoft, Privacy, Security, vulnerability

¶¶¶¶¶

Windows Remote Assistance Vulnerability Allow attacker To bypass Security Features

Microsoft has published details of CVE-2026-20824 as a security feature bypass vulnerability in Windows Remote Assistance, assigning it an “Important” severity rating with a CVSS v3.1 base score of 5.5 (temporal 4.8). The issue is categorized…

·

Cyber Security News, vulnerability, Windows

¶¶¶¶¶

Years-Old Vulnerable Apache Struts 2 Versions See 387K Weekly Downloads

Over 387,000 users downloaded vulnerable Apache Struts versions this week. Exclusive Sonatype research reveals a high-risk flaw found by AI. Is your system at risk?

·

Apache Struts, cybersecurity, Security, Sonatype, vulnerability, XWork, Zast AI

¶¶¶¶¶

Hacker Claims Full Breach of Max Messenger, Threatens Public Data Leak

A hacker using the alias CamelliaBtw has claimed responsibility for a major data breach involving Max Messenger, according…

·

Cyber Attack, Cyber-Attacks, cybersecurity, DarkForums, Data Breach, Encryption, Max Messenger, Privacy, Russia, Security, Teelgram, VK, vulnerability, WhatsApp

¶¶¶¶¶

Survey: Rapid AI Adoption Causes Major Cyber Risk Visibility Gaps

As software supply chains become longer and more interconnected, enterprises have become well aware of the need to…

·

AI, Artificial Intelligence, cybersecurity, News, Security, Technology, vulnerability

¶¶¶¶¶

Microsoft January 2026 Patch Tuesday: 115 Vulnerabilities Fixed

Microsoft kicks off 2026 with 115 security updates, including a fix for an actively exploited zero-day. Protect your Windows and Office systems today.

·

0day, cybersecurity, Microsoft, Patch Tuesday, Security, vulnerability

¶¶¶¶¶

Betterment Confirms Unauthorised Access to Its Internal Systems

Digital investment advisor Betterment has confirmed that unauthorized individuals gained access to its internal systems in a recent security breach. The compromise allowed attackers to send fraudulent cryptocurrency-related messages to some…

·

cyber security, Cyber Security News, Data Breach, vulnerability

¶¶¶¶¶

Hackers Launch Over 91,000 Attacks on AI Systems Using Fake Ollama Servers

A new investigation by GreyNoise reveals a massive wave of over 90,000 attacks targeting AI tools like Ollama and OpenAI. Experts warn that hackers are conducting “reconnaissance” to map out vulnerabilities in enterprise AI systems.

·

AI, Anthropic, Artificial Intelligence, Claude, Cyber Attack, Cyber-Attacks, cybersecurity, DeepSeek, GreyNoise, Grok, Llama, Meta, Ollama, Security, SSRF, Twilio, vulnerability, xAI

¶¶¶¶¶

Spring CLI Vulnerability Allows Attackers to Execute Commands on User Systems

A command-injection vulnerability in the Spring CLI VSCode extension allows attackers to execute arbitrary commands on affected user machines. The vulnerability, tracked as CVE-2026-22718, affects all versions …

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

Multiple Elastic Vulnerabilities Could Lead to File Theft and DoS

Elastic has released urgent security patches addressing four significant vulnerabilities in Kibana that could enable attackers to steal sensitive files, trigger service outages, and exhaust system resources. The advisories, published on January 14, 202…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

1010.cx

1010.cx

Category: vulnerability

GhostPoster Browser Malware Hid for 5 Years With 840,000 Installs

Windows Remote Assistance Vulnerability Allow attacker To bypass Security Features

Years-Old Vulnerable Apache Struts 2 Versions See 387K Weekly Downloads

Hacker Claims Full Breach of Max Messenger, Threatens Public Data Leak

Survey: Rapid AI Adoption Causes Major Cyber Risk Visibility Gaps

Microsoft January 2026 Patch Tuesday: 115 Vulnerabilities Fixed

Betterment Confirms Unauthorised Access to Its Internal Systems

Hackers Launch Over 91,000 Attacks on AI Systems Using Fake Ollama Servers

Spring CLI Vulnerability Allows Attackers to Execute Commands on User Systems

Multiple Elastic Vulnerabilities Could Lead to File Theft and DoS