Dark Reading

North Korea Uses ClickFix to Target macOS Users' Data

North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...
The Hacker News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.

Hackers are abusing unpatched Windows security flaws to hack into organizations

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit ...

Here's How Researchers Stole $10,000 From MKBHD's Locked iPhone

An iPhone exploit that involves a linked Visa card can allow attackers to steal money from a locked device using NFC, but the ...
Crypto Briefing

Polkadot linked Hyperbridge exploit losses jump to $2.5 million

Hyperbridge said its Token Gateway exploit was about 10 times worse than first reported, revising realized losses to roughly ...
Live Science on MSN

Hackers used Claude and ChatGPT to steal hundreds of millions of Mexican government records

A group of hackers used both Claude Code and ChatGPT in a cybersecurity hack that lasted two and a half months.
BeInCrypto

Bridged Polkadot Reportedly Hit by Exploit as Attacker Mints 1 Billion DOT Tokens

Attacker reportedly exploits a Hyperbridge gateway vulnerability to mint 1B bridged DOT on Ethereum, then dumps it for 108.2 ...

iCloud backups targeted in hack-for-hire operation using fake Apple pages

A new investigation shows that hackers are still relying on old tricks to break into iPhones and Android devices. Here are ...
Microsoft

Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise

The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North ...
Stocktwits on MSN

Ethereum-based Polkadot token exploit sees 1B tokens minted in Hyperbridge attack

An attacker minted 1 billion Polkadot tokens and sold them for $237,000 on Monday, using a bridged DOT hack on Ethereum. ・A weakness in a Hyperbridge gateway contract allowed an attacker to gain admin ...