Substack confirms data breach affects users’ email addresses and phone numbers

Newsletter platform Substack has confirmed a data breach in an email to users. The company said that in October, an ...

CISA warns of SmarterMail RCE flaw used in ransomware attacks

The Cybersecurity & Infrastructure Security Agency (CISA) in the U.S. has issued a warning about CVE-2026-24423, an ...
UNILAD

People have found a way to log into Jeffrey Epstein's 'email account' and dig through his inbox

Jeffrey Epstein's released files have exposed the dead financier's passwords after the DOJ failed to redact them and let ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
InfoWorld

4 self-contained databases for your apps

SQLite has its place, but it’s not fit for every occasion. Learn how to set up install-free versions of MariaDB, PostgreSQL MongoDB, and Redis for your development needs.
Security Boulevard

Enabling and Securing Basic Authentication: A Comprehensive Guide

Learn how to enable and secure basic authentication for enterprise systems. Guide covers tls encryption, credential hygiene, and sso migration for ctos.
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...
LinuxInsider

Weaponized Python and Linux Malware Target Executives and Cloud Systems

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...
The Hacker News

⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.

Experts flag around 800,000 Telnet servers exposed to remote attacks - here's why users should be on their guard

Telnet is an old network protocol that allows users to remotely log into devices. Because it is outdated and insecure, it is ...

MCP shipped without authentication. Clawdbot shows why that's a problem.

Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.

Nearly 800,000 Telnet servers exposed to remote attacks

Internet security watchdog Shadowserver tracks nearly 800,000 IP addresses with Telnet fingerprints amid ongoing attacks exploiting a critical authentication bypass vulnerability in the GNU InetUtils ...