Multiple vulnerabilities found in Anthropic’s Git MCP server
Erik van Klinken / techzine - Anthropic created the Model Context Protocol. Security was not necessarily a key focus in order to accelerate adoption. However, it now appears that Anthropic’s own Git MCP server has been vulnerable to multiple vulnerabilities. This is despite the fact t…
Back to Top / Tuesday, January 20, 2026, 8:21 am / permalink 18200 / 3 stories in 6 wks
Security Flaw Resurfaces in Anthropic’s New Claude Cowork Tool Days After Launch
Markus Kasanmascheff / winbuzzer - Anthropic has launched Cowork with a known data exfiltration vulnerability that researchers reported in October 2025 but remained unpatched for the January 13 release.The post Security Flaw Resurfaces in Anthropic’s New Claude Cowork Tool Days After Launc…
Back to Top / Saturday, January 17, 2026, 12:20 pm / permalink 18129 / 2 stories in 6 wks
He called himself an ‘untouchable hacker god’. But who was behind the biggest crime Finland has ever known?
/u/tw1st3d_m3nt4t / reddit - submitted by /u/tw1st3d_m3nt4t [link] [comments]
Back to Top / Saturday, January 17, 2026, 3:20 am / permalink 18116 / 2 stories in 6 wks
Supreme Court Hacker Posted Stolen Government Data On Instagram
BeauHD / slashdot - An anonymous reader quotes a report from TechCrunch: Last week, Nicholas Moore, 24, a resident of Springfield, Tennessee, pleaded guilty to repeatedly hacking into the U.S. Supreme Court's electronic document filing system. At the time, there were no deta…
Back to Top / Friday, January 16, 2026, 7:21 pm / permalink 18104 / 9 stories in 7 wks
RondoDox botnet exploits HPE OneView vulnerability on a massive scale
Berry Zwets / techzine - Check Point Research has identified a coordinated attack campaign targeting CVE-2025-37164, a critical vulnerability in HPE OneView. The RondoDox botnet is escalating from early reconnaissance to large-scale, automated attacks. Check Point has already blo…
Back to Top / Friday, January 16, 2026, 8:21 am / permalink 18015 / 2 stories in 7 wks
Fintech Firm Betterment Confirms Data Breach After Hackers Send Fake $10,000 Crypto Scam Messages
BeauHD / slashdot - An anonymous reader quotes a report from The Verge: Betterment, a financial app, sent a sketchy-looking notification on Friday asking users to send $10,000 to Bitcoin and Ethereum crypto wallets and promising to "triple your crypto," according to a thread…
Back to Top / Monday, January 12, 2026, 7:20 pm / permalink 17808 / 4 stories in 7 wks
(LEAD) Gov't says poor security of femtocells led to major payment breach at KT
Kang Yoon-seung / co - SEOUL, Dec. 29 (Yonhap) -- The science ministry said Monday the security breach ...
Back to Top / Monday, December 29, 2025, 4:20 am / permalink 17336 / 4 stories in 2 months
Ubisoft shuts down ‘Rainbow Six Siege’ servers following hack
Terrence O’Brien / theverge - Yesterday, Ubisoft confirmed that Rainbow Six Siege had been compromised and that it had shut down the game's servers and marketplace while it resolved the issue. The hackers managed to gain control over a significant chunk of the game's systems, includin…
Back to Top / Sunday, December 28, 2025, 11:20 am / permalink 17322 / 12 stories in 2 months
North Korean Hackers Have Stolen $2 Billion in Crypto This Year: Report
Ryan Gladwin / decrypt - Attackers from North Korea have swiped over $2 billion worth of crypto so far this year, accounting for 59% of all stolen funds.
Back to Top / Thursday, December 18, 2025, 8:20 am / permalink 17102 / 8 stories in 2 months
Multiple London councils' IT systems disrupted by cyberattack
Bill Toulas / bleepingcomputer - The Royal Borough of Kensington and Chelsea (RBKC) and the Westminster City Council (WCC) announced that they are experiencing service disruptions following a cybersecurity issue. [...]
Back to Top / Wednesday, November 26, 2025, 2:20 pm / permalink 16327 / 4 stories in 3 months
Read Epsteins emails as if you hacked into his Gmail account
mashable - Jmail is the best way to read and search through Jeffrey Epstein's emails.
Back to Top / Friday, November 21, 2025, 8:20 pm / permalink 16192 / 4 stories in 3 months
Anthropic warns of AI-driven hacking campaign linked to China
go - Researchers at an artificial intelligence firm say they've found the first reported case of foreign hackers using AI to automate portions of cyberattacks
Back to Top / Friday, November 14, 2025, 9:20 am / permalink 15959 / 10 stories in 3 months
Russian Hackers Abuse Hyper-V to Hide Malware and Evade Endpoint Detection
Markus Kasanmascheff / winbuzzer - Russian-linked hackers, Curly COMrades, are abusing Microsoft Hyper-V to deploy malware in hidden Linux VMs, bypassing EDR to conduct stealthy espionage.The post Russian Hackers Abuse Hyper-V to Hide Malware and Evade Endpoint Detection appeared first on …
Back to Top / Tuesday, November 4, 2025, 2:21 pm / permalink 15656 / 3 stories in 4 months
‘We got hacked’ emails threaten to leak University of Pennsylvania data
Lawrence Abrams / bleepingcomputer - The University of Pennsylvania suffered a cybersecurity incident on Friday, where students and alumni received a series of offensive emails from various University email addresses, claiming that data was stolen in a breach. [...]
Back to Top / Friday, October 31, 2025, 2:20 pm / permalink 15574 / 5 stories in 4 months
Hackers claim Discord breach exposed data of 5.5 million users
Lawrence Abrams / bleepingcomputer - Discord says they will not be negotiating with threat actors who claim to have stolen the data of 5.5 million unique users from the company's Zendesk support system instance, including government IDs and partial payment information for some people. [...]
Back to Top / Wednesday, October 8, 2025, 8:20 pm / permalink 15038 / 8 stories in 4 months
Discord users' IDs and data compromised in customer service provider hack
Mariella Moon / engadget - One of Discord's third-party customer service providers has been infiltrated by an unauthorized party who was able to gain access to users' information. Discord said it recently discovered the incident, which took place on September 20. The compromised da…
Back to Top / Saturday, October 4, 2025, 10:20 am / permalink 14978 / 3 stories in 5 months
Ivanti EPMM holes let miscreants plant shady listeners, CISA says
Jessica Lyons / theregister - Unnamed org compromised with two malware sets An unknown attacker has abused a couple of flaws in Ivanti Endpoint Manager Mobile (EPMM) and deployed two sets of malware against an unnamed organization, according to the US Cybersecurity and Infrastructure …
Back to Top / Friday, September 19, 2025, 1:21 pm / permalink 14745 / 2 stories in 5 months
Hackers left empty-handed after massive NPM supply-chain attack
Bill Toulas / bleepingcomputer - The largest supply-chain compromise in the history of the NPM ecosystem has impacted roughly 10% of all cloud environments, but attackers made little profit off it. [...]
Back to Top / Wednesday, September 10, 2025, 1:21 pm / permalink 14285 / 3 stories in 5 months
JavaScript packages with billions of downloads were injected with malicious code in world's largest supply chain hack, geared to steal crypto — a phishing email is all it took to undermine npm packages
tomshardware - JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.
Back to Top / Tuesday, September 9, 2025, 10:21 am / permalink 14143 / 3 stories in 5 months
Attackers snooping around Sitecore, dropping malware via public sample keys
Jessica Lyons / theregister - You cut and pasted the machine key from the official documentation? Ouch Unknown miscreants are exploiting a configuration vulnerability in multiple Sitecore products to achieve remote code execution via a publicly exposed key and deploy snooping malware …
Back to Top / Thursday, September 4, 2025, 7:21 pm / permalink 13857 / 2 stories in 6 months