The Hacker News

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

"The threat actors have recently resorted to utilizing JSON storage services like JSON Keeper, JSONsilo, and npoint.io to ...
CSO Online

Zero-day exploits hit Cisco ISE and Citrix systems in an advanced campaign

According to the Amazon Threat Intelligence team, attackers exploited bugs in Cisco and Citrix appliances before they were ...

Hackers exploited Citrix, Cisco ISE flaws in zero-day attacks

An advanced threat actor exploited the critical vulnerabilities "Citrix Bleed 2" (CVE-2025-5777) in NetScaler ADC and Gateway ...

ClickFix may be the biggest security threat your family has never heard of

Over the past year, scammers have ramped up a new way to infect the computers of unsuspecting people. The increasingly common ...

Hackers turn Cisco and Citrix zero-days into a malware nightmare

The researchers discovered the intrusion while investigating a Citrix Bleed Two vulnerability which was also being exploited ...
Microsoft

SesameOp: Novel backdoor uses OpenAI Assistants API for command and control

Microsoft Incident Response – Detection and Response Team (DART) researchers uncovered a new backdoor that is notable for its novel use of the OpenAI Assistants Application Programming Interface (API) ...
SecurityWeek

Cisco ISE, CitrixBleed 2 Vulnerabilities Exploited as Zero-Days: Amazon

A threat actor was seen exploiting two critical Citrix and Cisco vulnerabilities as zero-days weeks before patches were released ...

Attackers turned Citrix, Cisco 0-day exploits into custom-malware hellscape

An "advanced" attacker exploited CitrixBleed 2 and a max-severity Cisco Identity Services Engine (ISE) bug as zero-days to ...
Cryptopolitan on MSN

Phishing links in Polymarket private markets: Users raise alarm

Users on X have raised concerns about Polymarket’s private market, claiming it is being exploited by hackers. The hackers have reportedly stolen over $500,000 operating out of Polymarket comment ...
Cryptopolitan on MSN

3 VS Code extensions stealing credentials for GitHub, VSX, and crypto wallets

Developers will have to contend with a dormant turned active malicious code on Visual Studio Code (VS Code) extensions, which ...