Rigged Poker Games
The Department of Justice has indicted thirty-one people over the high-tech rigging of high-stakes poker games. In a typical legitimate…
Security
Control Web Panel Breached: Critical RCE Exploited in the Wild
A critical vulnerability has been identified in Control Web Panel (CWP), a widely used web hosting control panel also known…
2 Billion Email Addresses Were Exposed, and We Indexed Them All in Have I Been Pwned
Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite…
Scientists Need a Positive Vision for AI
For many in the research community, it’s gotten harder to be optimistic about the impacts of artificial intelligence. As authoritarianism…
Under UNC6384’s LNK: CVE-2025-9491 Powers PlugX Espionage Attacks
Executive Summary A Windows LNK (shortcut) UI-misrepresentation vulnerability (CVE-2025-9491, ZDI-CAN-25373) is being actively exploited by a China-linked threat actor tracked…
Chrome 142 Released: High-Severity V8 Flaws Fixed, $100K in Rewards Paid
Google has released Chrome 142, addressing a total of 20 security flaws, including two high-severity vulnerabilities affecting the V8 JavaScript…
Cybercriminals Targeting Payroll Sites
Microsoft is warning of a scam involving online payroll systems. Criminals use social engineering to steal people’s credentials, and then…
BadCandy: Stealth Implant Converts IOS XE into a Persistent Surveillance Node
Cybercriminals and advanced persistent threat (APT) actors continue to evolve toward stealthier, persistence-focused, and profit-driven operations. Recent intelligence reports reveal…
AI Summarization Optimization
These days, the most important meeting attendee isn’t a person: It’s the AI notetaker. This system assigns action items and…
Weekly Update 476
Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite…