Cybersecurity News - Page 9

The Python-based exploit showed several signs of AI generation, including unusually detailed educational docstrings, and a hallucinated CVSS score.

The incident was part of a broader cyber campaign targeting nine federal, state and municipal government agencies across Mexico.

Authorities say Dmitry Novikov headed “La Compañía” aka “Lakhta” network, a covert influence operation allegedly linked to Russian intelligence and the Wagner PMC.

The rebooted marketplace gained more than 22,000 users and over 100 vendors while generating at least €3.6 million ($4.2 million) in revenue.

Attackers reportedly altered download links on the official site, redirecting users to malicious third-party payloads instead of legitimate installers.

In brief: Ivanti and Palo Alto Networks fix zero-days, Daemon Tools compromised in a supply chain attack, and more.

The group likely exploits vulnerabilities in web-facing applications, including both zero-day and known flaws.

The flaw, tracked as CVE-2026-0300, allows unauthenticated attackers to execute arbitrary code with root privileges.

The suspect used software-defined radio (SDR) equipment and modified handheld radios to interfere with the Taiwan High Speed Rail.

The attackers used the legitimate Microsoft Phone Link app to access sensitive mobile data without infecting the victim’s smartphone.