Tag: security

China-nexus cyber actors’ are turning routers and IoT infrastructure into covert botnets ‘at scale’ – NCSC, Five Eyes, and others warn of campaign involving Typhoon-designated groups

A joint advisory from 10 nations warns that Chinese state‑sponsored groups are using large botnets of compromised IoT and SOHO devices. These covert networks allow attackers to hide their location, launch DDoS attacks, spread malware, and steal sensitive data at scale. Agencies urge organizations to patch devices, enforce strong credentials,…

Read More

Australia joins countries trialing Claude Mythos ‘to ​make sure we are aware of emerging vulnerabilities’

The Australian government confirmed it is working with Anthropic and other providers to stay informed about emerging cybersecurity vulnerabilities. Anthropic’s Mythos Preview, part of Project Glasswing, is said to be powerful enough to discover and exploit flaws at scale, though it remains unreleased to the public. Debate continues over whether…

Read More

Ransomware negotiator recruited by BlackCat ransomware gang pleads guilty to 2023 attacks, faces 20 years in prison

A Florida-based negotiator hired to assist ransomware victims secretly aided BlackCat attackers and even deployed ransomware himself Prosecutors revealed he shared confidential client information, conspired with accomplices, and laundered over $1 million in Bitcoin All three defendants pleaded guilty, with sentencing dates set for mid‑2026 and potential prison terms of…

Read More

Mythos accessed by unauthorized users as Anthropic says ‘We’re investigating’ — Cracks may be showing in Project Glasswing as unknown users access model via third parties

Unauthorized users claim to have access to Anthropic’s Claude Mythos The users gained access with guesswork and third-party access The model is capable of exploiting software vulnerabilities at scale Anthropic’s Mythos model, which is capable of spotting hundreds of zero-day vulnerabilities in software, has been accessed by unauthorized users. A…

Read More

‘The math is simple’: OpenClaw ‘Trojan Horse’ AI agents give hackers full control of 28,000+ systems

OpenClaw exposures reveal thousands of internet accessible high risk systems AI agents are being deployed with excessive permissions across critical environments Remote code execution vulnerabilities expose most observed OpenClaw deployments Agentic systems are moving quickly from experimentation into everyday workflows, yet recent findings suggest security practices are not keeping pace.…

Read More

Iran alleges systematic sabotage of US-made networking infrastructure mid-conflict — hardware shut down and rebooted despite internet blackout

Iran blames the US for a networking shutdown Blame has been placed on pre-installed backdoors in US tech Iran remains reliant on importing foreign tech Iranian media has accused US tech companies and the US government of working together to install secret backdoors in networking infrastructure. The claim comes after…

Read More