Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.

Worm-driven TeamPCP campaign exploits Docker, Kubernetes, Redis, Ray, and React2Shell to build proxy infrastructure for data theft and ransomware.

Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.

Moltbot’s viral open-source AI assistant wowed users with automation power but sparked major security, privacy, and misuse concerns.

Hackers are on the hunt for open telnet ports in servers after discovering that a version of the legacy client-server application protocol is vulnerable to an ...

With OpenAI's latest updates to its Responses API — the application programming interface that allows developers on OpenAI's platform to access multiple agentic tools like web search and file search ...

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

What SOC teams need to monitor, triage, and contain when clawdbot-like agentic AI assistants. Includes detection signals, triage questions, and a containment playbook. The post Clawdbot-Style Agentic ...