Mirai Turns Unsupported D-Link Routers into DDoS Weapons Using CVE-2025-29635
Researchers have uncovered an active Mirai botnet campaign exploiting CVE-2025-29635, a command-injection vulnerability in legacy D-Link DIR-823X routers, to recruit…
April 2026
French police arrest 21-year-old “HexDex” hacker over 100 alleged data breaches
A 21-year-old man suspected of conducting approximately 100 data breaches since late 2025 – including a hack of the French…
Weekly Update 501
Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite…
UNC6692 Combines Social Engineering, Malware, Cloud Abuse
A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom “Snow” malware in a multipronged campaign.
Unpatched ‘PhantomRPC’ Flaw in Windows Enables Privilege Escalation
A researcher discovered five different exploit paths that stem from an architectural weakness in how Windows’ Remote Procedure Call (RPC)…
Netflix Phishing Scams: They’re More Dangerous Than You Think
Cybercriminals are actively targeting Netflix users, trying to trick them into accessing phishing websites and handing over their login credentials.…
What Is a Mobile Hotspot and Is It Safe from Hackers?
With just a few taps, you can turn your phone into a mobile hotspot and connect your laptop or tablet.…
Hackers claim to have breached Udemy, stealing 1.4 million user records
Notorious hacking group ShinyHunters recently announced they had breached Udemy’s systems and exfiltrated a large dataset of user information. Key…
20-Year-Old Malware Rewrites History of Cyber Sabotage
Researchers have uncovered a malware framework dubbed “fast16” that predates Stuxnet by five years.
Parsing Agentic Offensive Security’s Existential Threat
Some fear frontier LLMs like Claude Mythos and OpenAI’s GPT-5.5 will lead to cybersecurity annihilation. Ari Herbert-Voss notes this could…