Mail2Shell zero-click attack lets hackers hijack FreeScout mail servers

A maximum severity vulnerability in the FreeScout helpdesk platform allows hackers to achieve remote code execution without any user interaction or authentication.

Destroyed servers and DoS attacks: What can happen when OpenClaw AI agents interact

Destroyed servers and DoS attacks: What can happen when OpenClaw AI agents interact ...

CyberStrikeAI tool adopted by hackers for AI-powered attacks

Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet ...
CSOonline

Flaws in four popular VS Code extensions left 128 million installs open to attack

Critical and high-severity vulnerabilities were found in four widely used Visual Studio Code extensions with a combined 128 million downloads, exposing developers to file theft, remote code execution, ...
The Hacker News

Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

Microsoft reveals ClickFix campaign abusing Windows Terminal to deliver Lumma Stealer and steal browser credentials.
The Hacker News

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

Researchers link Silver Dragon APT to APT41 after attacks on government entities using Cobalt Strike, DNS tunneling, and ...
SecurityWeek

Critical FreeScout Vulnerability Leads to Full Server Compromise

A critical-severity FreeScout vulnerability can be exploited for remote code execution without authentication or user interaction.
ZDNet

5 Linux servers that let you ditch the public cloud and reclaim your privacy - for free

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is one of the most unique I've ever seen Best laptop cooling pads Best flip ...
CSO Online

ClickFix attackers using new tactic to evade detection, says Microsoft

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news. Regardless, they agree that infosec leaders need to educate employees about ...
Fox News

UK blocks Trump from using RAF air bases for potential Iran attack: report

The United Kingdom is blocking the Trump administration from using its military air bases for a possible attack on Iran over concerns that a strike could violate international law. A report by The ...
The Hill

Iranian foreign minister warns of attacks on US bases if Washington strikes

Iran’s foreign minister said that Tehran would attack U.S. military bases if Washington conducts strikes in the Middle Eastern country, warning that “U.S. bases are spread all over the region.” “In my ...
Medical Xpress

How lung tumors use the brain to avoid immune attacks

University of Pennsylvania Perelman School of Medicine and Yale University School of Medicine, along with other collaborators, report that lung adenocarcinoma can engage nerve pathways that link the ...