WinRAR path traversal flaw still exploited by numerous hackers

Multiple threat actors, both state-sponsored and financially motivated, are exploiting the CVE-2025-8088 high-severity ...
The Hacker News

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

ClickFix uses fake CAPTCHAs and a signed Microsoft App-V script to deploy Amatera stealer on enterprise Windows systems.
The Hacker News

Konni Hackers Deploy AI-Generated PowerShell Backdoor Against Blockchain Developers

North Korean group Konni uses AI-assisted PowerShell malware and phishing via Google ads and Discord to breach blockchain ...
IndieWire

The Black List Unveils Hollywood’s Favorite Unproduced Screenplays of 2025

Seventy-four scripts by 86 writers were selected by a voting pool of over 500 Hollywood executives, and Matisse Haddad's "Best Seller" took the #1 spot. For a spec screenwriter looking for a way into ...
HHS

Exploit Attempts Surge for React2Shell

Hacker interest is high in a days-old vulnerability in widely used web application framework React, with dozens of organizations already falling victim to it, cybersecurity experts warn. See Also: Top ...
Benzinga.com

Could AI Agents Exploit Ethereum, XRP, Solana? Anthropic Says It's Possible

AI firm Anthropic says its latest tests showed AI agents autonomously hacking top blockchains and draining simulated funds, signaling that automated exploits may now threaten blockchains like Ethereum ...
GameSpot

Battlefield 6 And Redsec 1.1.1.5 Update Patches Out An Infamous Exploit

GameSpot may get a commission from retail offers. Battlefield 6 and the battle royale game Redsec are getting a new update on November 11, featuring a number of quality-of-life updates and bug fixes.
TWCN Tech News

How to disable Exploit Protection in Windows 11

Windows doesn’t offer a single switch to disable Exploit Protection completely. You can only disable individual mitigations system-wide or per app. We strongly recommend turning it off only for ...
TechCrunch

Apple alerts exploit developer that his iPhone was targeted with government spyware

Earlier this year, a developer was shocked by a message that appeared on his personal phone: “Apple detected a targeted mercenary spyware attack against your iPhone.” “I was panicking,” Jay Gibson, ...
The Washington Post

How some veterans exploit $193 billion VA program, due to lax controls

Military veterans are swamping the U.S. government with dubious disability claims — including cases of brazen fraud totaling tens of millions of dollars — that are exploiting the country’s sacred ...
Yahoo

Frackville residents ask New Castle Twp. officials to block data center

NEW CASTLE TWP — It’s not every day that residents of one community show up at the monthly meeting of officials in a neighboring municipality. That’s what happened Tuesday night when 30 Frackville ...
AppleInsider

WhatsApp flaw paired with iOS 18 exploit delivered zero-click spyware

A new spyware campaign chained WhatsApp and a flaw in iOS 18.6 to expose users to a "zero-click" hack that required no interaction to compromise an iPhone. Apple had previously issued a fix for a ...