This is an automated aggregator of newsworthy articles collected from multiple web sites, summarised by AI. Last updated: .

⚠️

This is an archived news list from the past. Click here to view the latest news.

Tech News

Tesla Shareholders Approve Elon Musk's Pay Package: Tesla shareholders have approved a substantial pay package for CEO Elon Musk. 👉 wsj.com^$
- The approval comes after Musk threatened to leave Tesla if the package was not approved.
- The pay package requires Musk to meet specific milestones and increase Tesla's market cap to $8.5T over 10 years.
- Musk said we're a few months away from supervised FSD being solved and that means it's time to ramp up production
- 75% of shareholders have voted for, quite a decisive statement by @Tesla shareholders. 👉 x.com
- Musk is Tesla and Tesla is Musk....the pay package approval is a big step in the right direction for the AI story at Tesla 🔥🏆🐂🎯🍿 👉 x.com
Grand Theft Auto VI Release Delayed: Take-Two Interactive has delayed the release of Grand Theft Auto VI to November 2026. 👉 bloomberg.com^$
- The company reports Q2 net bookings up 33% YoY to $1.96B, vs. $1.72B est.
- TTWO drops 8%+ after hours due to the delay.
- The release date had previously slipped to May 2026 from fall 2025
- Hi everyone, Grand Theft Auto VI will now release on Thursday, November 19, 2026. We are sorry for adding additional time to what we realize has been a long wait, but these extra months will allow us to finish the game with the level of polish you have come to expect 👉 x.com
OpenAI Clarifies Stance on Government Funding: OpenAI CEO Sam Altman stated that the company is not seeking government guarantees for data centers and expects to fund investments with revenues. 👉 bloomberg.com^$
- The company aims to fund investments with revenues, projecting "hundreds of billions by 2030."
- Late Wednesday, OpenAI CFO Sarah Friar clarified that the startup is not seeking a government "backstop" for its infrastructure commitments. 👉 cnbc.com
- She softened her stance later in a LinkedIn post and said OpenAI is not seeking a government backstop for its infrastructure commitments. 👉 tech.slashdot.org
- I would like to clarify a few things. First, the obvious one: we do not have or want government guarantees for OpenAI datacenters. We believe that governments should not pick winners or losers, and that taxpayers should not bail out companies that make bad business decisions or 👉 x.com
- I used the word 'backstop' and it muddied the point 👉 linkedin.com
Trump's AI Czar Rejects Federal Bailout for AI: David Sacks, serving as President Trump's AI and crypto czar, stated there will be "no federal bailout for AI". 👉 cnbc.com
- Sacks clarified that the administration aims to facilitate rapid infrastructure buildouts without increasing residential electricity rates.
- The U.S. has at least 5 major frontier model companies. If one fails, others will take its place. 👉 x.com
FBI Subpoenas Domain Registrar for archive.today: The FBI has subpoenaed Tucows, a Canadian domain registrar, seeking information about the owner of archive[dot]today, a popular archiving site. 👉 404media.co
- The subpoena is part of a federal criminal investigation, though details are scarce.
- canaray: 👉 x.com
Microsoft Aims for AI Independence from OpenAI: Microsoft AI CEO Mustafa Suleyman outlined the company's plans to develop AI self-sufficiency from OpenAI. 👉 wsj.com^$
- This includes releasing its own voice, image, and text models.
- Microsoft will force its ‘superintelligence’ to be a ‘humanist’ and play nice with people 👉 theregister.com
- At @MicrosoftAI, we're working towards Humanist Superintelligence (HSI): incredibly advanced AI capabilities that always work for, in service of, people and humanity. And to do this we have formed the MAI Superintelligence Team. 👉 x.com
Meta Projected $16B from Scam Ads in 2024: Internal documents reveal that Meta projected a significant portion of its 2024 revenue would come from ads for scams and banned goods. 👉 reuters.com
- The projection estimated ~$7B from “higher risk” ads.
- The social media giant internally estimates that its platforms show users 15 billion scam ads a day 👉 bsky.app
- Meta is earning a fortune on deluge of fraudulent ads Reuters reports"Meta projected 10% of its 2024 revenue would come from ads for scams & banned goods..15 bil scam ads/day. 👉 bsky.app
- Meta makes more money from ad fraud - as much as $16 billion - than all the NFL TV partners put together make on NFL ad sales. Theft on an epic scale. 👉 x.com
Congressional Budget Office Hacked: The US Congressional Budget Office (CBO) has identified a security incident, with sources suggesting a foreign actor was behind the hack. 👉 washingtonpost.com
- Officials worry that communications between lawmakers' offices and nonpartisan researchers may have been accessed.
- Congressional Budget Office believed to have been hacked by foreign actor 👉 bsky.app
NVIDIA CEO Warns About AI Race with China: Jensen Huang, CEO of NVIDIA, warned that China is poised to win the AI race due to lower energy costs and fewer regulations. 👉 ft.com^$
- Huang says the West is held back by “cynicism”.
- China is going to win the AI race 👉 x.com
Google Enhances Finance Platform with AI and Prediction Markets: Google Finance has added Gemini's Deep Search and prediction market data from Kalshi and Polymarket for future event analysis. 👉 androidauthority.com
- The new features are initially available in the US.
- The most complex questions Deep Search in Google Finance can help with. Just ask whatever's on your mind & select the new Deep Search option. 👉 x.com
Rockstar Responds to Union-Busting Claims: Rockstar Games stated that the dozens of employees it fired last week were leaking company secrets, disputing union allegations of union-busting. 👉 bloomberg.com^$
- The company fired between 30 and 40 employees for "gross misconduct."
FAA to Reduce Flight Volumes Due to Shutdown: The Federal Aviation Administration (FAA) will reduce flight volumes by 10 percent across 40 major airports due to the government shutdown. 👉 theverge.com "(1 day ago)"
- This action could affect 3,000 to 4,500 flights daily.
Meta to Introduce AI-Generated Video Feed in Europe: Meta is launching Vibes, its short-form video feed of AI-generated videos, in Europe through the Meta AI app. 👉 techcrunch.com
- This follows its US debut six weeks earlier.
- They finally figured out a way to punish the EU. 👉 x.com
US Job Cuts Reach Highest Level in 22 Years: US companies announced 153,074 job cuts in October 2025, the most for any October since 2003, driven by AI and cost-cutting. 👉 bloomberg.com^$
- I'm happy for you Or sorry that happened 👉 x.com
SAS Institute Exits China: US software company SAS Institute has withdrawn from mainland China and dismissed its local staff after 25 years. 👉 scmp.com "(1 day ago)"
- The company cited intense domestic competition and geopolitical tensions for the move.
AI-Slop ransomware test sneaks on to VS Code marketplace: A malicious extension with basic ransomware capabilities seemingly created with the help of AI, has been published on Microsoft's official VS Code marketplace. 👉 bleepingcomputer.com "(1 day ago)"
How a ransomware gang encrypted Nevada government's systems: The State of Nevada has completed its recovery from a ransomware attack it suffered on August 24, 2025, which impacted 60 state agencies, disrupting critical services related to health and public safety. 👉 bleepingcomputer.com "(1 day ago)"
ClickFix malware attacks evolve with multi-OS support, video tutorials: ClickFix attacks have evolved to feature videos that guide victims through the self-infection process, a timer to pressure targets into taking risky actions, and automatic detection of the operating system to provide the correct commands. 👉 bleepingcomputer.com "(1 day ago)"
Critical Cisco UCCX flaw lets attackers run commands as root: Cisco has released security updates to patch a critical vulnerability in the Unified Contact Center Express (UCCX) software, which could enable attackers to execute commands with root privileges. 👉 bleepingcomputer.com "(1 day ago)"
Sandworm hackers use data wipers to disrupt Ukraine's grain sector: Russian state-backed hacker group Sandworm has deployed multiple data-wiping malware families in attacks targeting Ukraine's education, government, and the grain sector, the country's main revenue source. 👉 bleepingcomputer.com "(1 day ago)"
Gootloader malware is back with new tricks after 7-month break: The Gootloader malware loader operation has returned after a 7-month absence and is once again performing SEO poisoning to promote fake websites that distribute the malware. 👉 bleepingcomputer.com "(2 days ago)"
Hyundai AutoEver America data breach exposes SSNs, drivers licenses: Hyundai AutoEver America is notifying individuals that hackers breached the company's IT environment and gained access to personal information. 👉 bleepingcomputer.com "(2 days ago)"
CISA warns of critical CentOS Web Panel bug exploited in attacks: The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning that threat actors are exploiting a critical remote command execution flaw in CentOS Web Panel (CWP). 👉 bleepingcomputer.com "(2 days ago)"
UK carriers to block spoofed phone numbers in fraud crackdown: Under a new partnership with the government aimed at combating fraud, Britain's largest mobile carriers have committed to upgrading their networks to eliminate scammers' ability to spoof phone numbers within a year. 👉 bleepingcomputer.com "(2 days ago)"
University of Pennsylvania confirms data stolen in cyberattack: The University of Pennsylvania has confirmed that a hacker breached numerous internal systems related to the university's development and alumni activities and stole data in a cyberattack. 👉 bleepingcomputer.com "(2 days ago)"
Google warns of new AI-powered malware families deployed in the wild: Google's Threat Intelligence Group (GTIG) has identified a major shift this year, with adversaries leveraging artificial intelligence to deploy new malware families that integrate large language models (LLMs) during execution. 👉 bleepingcomputer.com "(2 days ago)"
Police busts credit card fraud rings with 4.3 million victims: International authorities have dismantled three massive credit card fraud and money laundering networks, linked to losses exceeding €300 million ($344 million) and affecting over 4.3 million cardholders across 193 countries. 👉 bleepingcomputer.com "(2 days ago)"
Trojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on Ukraine: A Russia-aligned threat actor used trojanized ESET installers to target Ukrainian entities with the Kalambur backdoor. 👉 thehackernews.com
Cisco Warns of New Firewall Attack: Cisco has released security updates to patch a critical vulnerability in the Unified Contact Center Express (UCCX) software, which could enable attackers to execute commands with root privileges. 👉 thehackernews.com
Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection: The threat actor known as Curly COMrades has been observed exploiting virtualization technologies as a way to bypass security solutions and execute custom malware. 👉 thehackernews.com
Google Uncovers PROMPTFLUX Malware: The novel feature is part of its "Thinking Robot" component, which periodically queries the large language model (LLM), Gemini 1.5 Flash or later in this case, to obtain new code so as to sidestep detection. 👉 thehackernews.com
Researchers Find ChatGPT Vulnerabilities: Cybersecurity researchers have disclosed a new set of vulnerabilities impacting OpenAI's ChatGPT artificial intelligence (AI) chatbot that could be exploited by an attacker to steal personal information from users' memories and chat histories without their knowledge. 👉 thehackernews.com
Mysterious 'SmudgedSerpent' Hackers Target U.S. Policy Experts Amid Iran–Israel Tensions: A never-before-seen threat activity cluster codenamed UNK_SmudgedSerpent has been attributed as behind a set of cyber attacks targeting academics and foreign policy experts between June and August 2025, coinciding with heightened geopolitical tensions between Iran and Israel. 👉 thehackernews.com
U.S. Sanctions 10 North Korean Entities for Laundering $12.7M in Crypto and IT Fraud: The U.S. Treasury Department on Tuesday imposed sanctions against eight individuals and two entities within North Korea's global financial network for laundering money for various illicit schemes , including cybercrime and information technology (IT) worker fraud . 👉 thehackernews.com
Cloudflare Scrubs Aisuru Botnet From Top Domains List: Cloudflare has responded by redacting Aisuru domain names from their top websites list. 👉 krebsonsecurity.com
- Cloudflare CEO Matthew Prince says Aisuru’s overlords are using the botnet to boost their malicious domain rankings, while simultaneously attacking the company’s domain name system (DNS) service.
Alleged Jabber Zeus Coder ‘MrICQ’ in U.S. Custody: Yuriy Igorevich Rybtsov, indicted in 2012 for conspiring with the Jabber Zeus hacking group, has been arrested in Italy and is now in U.S. custody. 👉 krebsonsecurity.com
- A 13-year-old indictment (PDF) filed by prosecutors in Nebraska, MrICQ was a developer for a cybercrime group known as “Jabber Zeus.”
- In April 2025, Rybtsov lost a final appeal to avoid extradition to the United States.
Aisuru Botnet Shifts from DDoS to Residential Proxies: The Aisuru botnet, known for large DDoS attacks, now supports renting compromised IoT devices to proxy services for cybercriminals. 👉 krebsonsecurity.com "(1 week ago)"
- A service that tracks proxy networks has seen 250 million unique residential proxy IPs in the last 90 days.
- The Incessant attacks from Aisuru have caught the attention of federal authorities in the United States and Europe (many of Aisuru’s victims are customers of ISPs and hosting providers based in Europe)
Canada Fines Cybercrime-Friendly Cryptomus $176M: Financial regulators in Canada levied $176 million in fines against Cryptomus for violating anti-money laundering laws. 👉 krebsonsecurity.com "(1 week ago)"
- Cryptomus is a digital payments platform that supports dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services.
- FINTRAC found that Cryptomus failed to submit suspicious transaction reports in cases where there were reasonable grounds to suspect that they were related to the laundering of proceeds connected to trafficking in child sexual abuse material, fraud, ransomware payments and sanctions evasion.
- These platforms were built for Russian speakers, and they each advertised the ability to anonymously swap one form of cryptocurrency for another
- “These platforms were built for Russian speakers, and they each advertised the ability to anonymously swap one form of cryptocurrency for another,” the December 2024 story noted. “They also allowed the exchange of cryptocurrency for cash in accounts at some of Russia’s largest banks — nearly all of which are currently sanctioned by the United States and other western nations.”
ShinyHunters Wage Broad Corporate Extortion Spree: A cybercriminal group called ShinyHunters has launched a website that threatens to publish data stolen from dozens of Fortune 500 firms unless a ransom is paid. 👉 krebsonsecurity.com "(1 week ago)"
- A month later, Google acknowledged that one of its own corporate Salesforce instances was impacted in the voice phishing campaign.
- Data includes terabytes of sensitive files from thousands of customers of the enterprise software maker Red Hat.
- The Scattered Lapsus$ Hunters darknet blog is currently offline. The outage appears to have coincided with the disappearance of the group’s new clearnet blog — breachforums[.]hn — which vanished after shifting its Domain Name Service (DNS) servers from DDoS-Guard to Cloudflare.
- Before it died, the websites disclosed that hackers were exploiting a critical zero-day vulnerability in Oracle’s E-Business Suite software.
Feds Tie Scattered Spider Duo to $115M in Ransoms: U.S. prosecutors have levied criminal hacking charges against Thalha Jubair and Owen Flowers for allegedly being core members of Scattered Spider, a cybercrime group blamed for extorting at least $115 million in ransom payments. 👉 krebsonsecurity.com "(1 week ago)"
Self-Replicating Worm Hits Software Packages: At least 187 code packages available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and publishes those secrets on GitHub. 👉 krebsonsecurity.com "(1 week ago)"
- The malware briefly infected multiple code packages from the security vendor CrowdStrike, steals and publishes even more credentials every time an infected package is installed.
- The security-focused code development platform socket.dev reports the Shai-Halud attack briefly compromised at least 25 NPM code packages managed by CrowdStrike.
- Once the first person got compromised, there was no stopping it,” Aikido’s Eriksen told KrebsOnSecurity. He said the first NPM package compromised by this worm appears to have been altered on Sept. 14, around 17:58 UTC.
Windows 11 Store gets Ninite-style multi-app installer feature: The Microsoft Store on the web now lets you create a multi-app install package on Windows 11 that installs multiple applications from a single installer. 👉 bleepingcomputer.com "(2 days ago)"
The End of Secrets: A Practical Roadmap to Managed Identities: Find out Is identity the weakest link in your agentic AI adoption? 👉 thehackernews.uk
Get a Free Identity Security Snapshot — No Cost, No Risk, Full Clarity: How to get the key insights on security. 👉 thehackernews.uk
The New Stack: Microsoft Launches Magentic Marketplace for AI Agents 👉 thenewstack.io
Reuters: Meta earns billions from fraudulent ads: Reuters reveals details of internal documents 👉 unn.ua
Bloomberg: Google to Offer Kalshi and Polymarket Data on Finance Searches 👉 bloomberg.com^$
Semafor: Microsoft plans to focus on superintelligence that prioritizes human control. 👉 semafor.com
The Verge: US approves pay packet that could make Elon Musk the first trillionaire. 👉 theverge.com
The Register: Union brands Rockstar's leak claim a distraction as protests hit Take-Two London. 👉 theregister.com

Tech News

Tesla Shareholders Approve Elon Musk's Pay Package: Tesla shareholders have approved a substantial pay package for CEO Elon Musk. 👉 wsj.com^$

The approval comes after Musk threatened to leave Tesla if the package was not approved.
The pay package requires Musk to meet specific milestones and increase Tesla's market cap to $8.5T over 10 years.
Musk said we're a few months away from supervised FSD being solved and that means it's time to ramp up production
75% of shareholders have voted for, quite a decisive statement by @Tesla shareholders. 👉 x.com
Musk is Tesla and Tesla is Musk....the pay package approval is a big step in the right direction for the AI story at Tesla 🔥🏆🐂🎯🍿 👉 x.com

Grand Theft Auto VI Release Delayed: Take-Two Interactive has delayed the release of Grand Theft Auto VI to November 2026. 👉 bloomberg.com^$

The company reports Q2 net bookings up 33% YoY to $1.96B, vs. $1.72B est.
TTWO drops 8%+ after hours due to the delay.
The release date had previously slipped to May 2026 from fall 2025
Hi everyone, Grand Theft Auto VI will now release on Thursday, November 19, 2026. We are sorry for adding additional time to what we realize has been a long wait, but these extra months will allow us to finish the game with the level of polish you have come to expect 👉 x.com

OpenAI Clarifies Stance on Government Funding: OpenAI CEO Sam Altman stated that the company is not seeking government guarantees for data centers and expects to fund investments with revenues. 👉 bloomberg.com^$

The company aims to fund investments with revenues, projecting "hundreds of billions by 2030."
Late Wednesday, OpenAI CFO Sarah Friar clarified that the startup is not seeking a government "backstop" for its infrastructure commitments. 👉 cnbc.com
She softened her stance later in a LinkedIn post and said OpenAI is not seeking a government backstop for its infrastructure commitments. 👉 tech.slashdot.org
I would like to clarify a few things. First, the obvious one: we do not have or want government guarantees for OpenAI datacenters. We believe that governments should not pick winners or losers, and that taxpayers should not bail out companies that make bad business decisions or 👉 x.com
I used the word 'backstop' and it muddied the point 👉 linkedin.com

Trump's AI Czar Rejects Federal Bailout for AI: David Sacks, serving as President Trump's AI and crypto czar, stated there will be "no federal bailout for AI". 👉 cnbc.com

Sacks clarified that the administration aims to facilitate rapid infrastructure buildouts without increasing residential electricity rates.
The U.S. has at least 5 major frontier model companies. If one fails, others will take its place. 👉 x.com

FBI Subpoenas Domain Registrar for archive.today: The FBI has subpoenaed Tucows, a Canadian domain registrar, seeking information about the owner of archive[dot]today, a popular archiving site. 👉 404media.co

The subpoena is part of a federal criminal investigation, though details are scarce.
canaray: 👉 x.com

Microsoft Aims for AI Independence from OpenAI: Microsoft AI CEO Mustafa Suleyman outlined the company's plans to develop AI self-sufficiency from OpenAI. 👉 wsj.com^$

This includes releasing its own voice, image, and text models.
Microsoft will force its ‘superintelligence’ to be a ‘humanist’ and play nice with people 👉 theregister.com
At @MicrosoftAI, we're working towards Humanist Superintelligence (HSI): incredibly advanced AI capabilities that always work for, in service of, people and humanity. And to do this we have formed the MAI Superintelligence Team. 👉 x.com

Meta Projected $16B from Scam Ads in 2024: Internal documents reveal that Meta projected a significant portion of its 2024 revenue would come from ads for scams and banned goods. 👉 reuters.com

The projection estimated ~$7B from “higher risk” ads.
The social media giant internally estimates that its platforms show users 15 billion scam ads a day 👉 bsky.app
Meta is earning a fortune on deluge of fraudulent ads Reuters reports"Meta projected 10% of its 2024 revenue would come from ads for scams & banned goods..15 bil scam ads/day. 👉 bsky.app
Meta makes more money from ad fraud - as much as $16 billion - than all the NFL TV partners put together make on NFL ad sales. Theft on an epic scale. 👉 x.com

Congressional Budget Office Hacked: The US Congressional Budget Office (CBO) has identified a security incident, with sources suggesting a foreign actor was behind the hack. 👉 washingtonpost.com

Officials worry that communications between lawmakers' offices and nonpartisan researchers may have been accessed.
Congressional Budget Office believed to have been hacked by foreign actor 👉 bsky.app

NVIDIA CEO Warns About AI Race with China: Jensen Huang, CEO of NVIDIA, warned that China is poised to win the AI race due to lower energy costs and fewer regulations. 👉 ft.com^$

Huang says the West is held back by “cynicism”.
China is going to win the AI race 👉 x.com

Google Enhances Finance Platform with AI and Prediction Markets: Google Finance has added Gemini's Deep Search and prediction market data from Kalshi and Polymarket for future event analysis. 👉 androidauthority.com

The new features are initially available in the US.
The most complex questions Deep Search in Google Finance can help with. Just ask whatever's on your mind & select the new Deep Search option. 👉 x.com

Rockstar Responds to Union-Busting Claims: Rockstar Games stated that the dozens of employees it fired last week were leaking company secrets, disputing union allegations of union-busting. 👉 bloomberg.com^$

The company fired between 30 and 40 employees for "gross misconduct."

FAA to Reduce Flight Volumes Due to Shutdown: The Federal Aviation Administration (FAA) will reduce flight volumes by 10 percent across 40 major airports due to the government shutdown. 👉 theverge.com "(1 day ago)"

This action could affect 3,000 to 4,500 flights daily.

Meta to Introduce AI-Generated Video Feed in Europe: Meta is launching Vibes, its short-form video feed of AI-generated videos, in Europe through the Meta AI app. 👉 techcrunch.com

This follows its US debut six weeks earlier.
They finally figured out a way to punish the EU. 👉 x.com

US Job Cuts Reach Highest Level in 22 Years: US companies announced 153,074 job cuts in October 2025, the most for any October since 2003, driven by AI and cost-cutting. 👉 bloomberg.com^$

I'm happy for you Or sorry that happened 👉 x.com

SAS Institute Exits China: US software company SAS Institute has withdrawn from mainland China and dismissed its local staff after 25 years. 👉 scmp.com "(1 day ago)"

The company cited intense domestic competition and geopolitical tensions for the move.

AI-Slop ransomware test sneaks on to VS Code marketplace: A malicious extension with basic ransomware capabilities seemingly created with the help of AI, has been published on Microsoft's official VS Code marketplace. 👉 bleepingcomputer.com "(1 day ago)"

How a ransomware gang encrypted Nevada government's systems: The State of Nevada has completed its recovery from a ransomware attack it suffered on August 24, 2025, which impacted 60 state agencies, disrupting critical services related to health and public safety. 👉 bleepingcomputer.com "(1 day ago)"

ClickFix malware attacks evolve with multi-OS support, video tutorials: ClickFix attacks have evolved to feature videos that guide victims through the self-infection process, a timer to pressure targets into taking risky actions, and automatic detection of the operating system to provide the correct commands. 👉 bleepingcomputer.com "(1 day ago)"

Critical Cisco UCCX flaw lets attackers run commands as root: Cisco has released security updates to patch a critical vulnerability in the Unified Contact Center Express (UCCX) software, which could enable attackers to execute commands with root privileges. 👉 bleepingcomputer.com "(1 day ago)"

Sandworm hackers use data wipers to disrupt Ukraine's grain sector: Russian state-backed hacker group Sandworm has deployed multiple data-wiping malware families in attacks targeting Ukraine's education, government, and the grain sector, the country's main revenue source. 👉 bleepingcomputer.com "(1 day ago)"

Gootloader malware is back with new tricks after 7-month break: The Gootloader malware loader operation has returned after a 7-month absence and is once again performing SEO poisoning to promote fake websites that distribute the malware. 👉 bleepingcomputer.com "(2 days ago)"

Hyundai AutoEver America data breach exposes SSNs, drivers licenses: Hyundai AutoEver America is notifying individuals that hackers breached the company's IT environment and gained access to personal information. 👉 bleepingcomputer.com "(2 days ago)"

CISA warns of critical CentOS Web Panel bug exploited in attacks: The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning that threat actors are exploiting a critical remote command execution flaw in CentOS Web Panel (CWP). 👉 bleepingcomputer.com "(2 days ago)"

UK carriers to block spoofed phone numbers in fraud crackdown: Under a new partnership with the government aimed at combating fraud, Britain's largest mobile carriers have committed to upgrading their networks to eliminate scammers' ability to spoof phone numbers within a year. 👉 bleepingcomputer.com "(2 days ago)"

University of Pennsylvania confirms data stolen in cyberattack: The University of Pennsylvania has confirmed that a hacker breached numerous internal systems related to the university's development and alumni activities and stole data in a cyberattack. 👉 bleepingcomputer.com "(2 days ago)"

Google warns of new AI-powered malware families deployed in the wild: Google's Threat Intelligence Group (GTIG) has identified a major shift this year, with adversaries leveraging artificial intelligence to deploy new malware families that integrate large language models (LLMs) during execution. 👉 bleepingcomputer.com "(2 days ago)"

Police busts credit card fraud rings with 4.3 million victims: International authorities have dismantled three massive credit card fraud and money laundering networks, linked to losses exceeding €300 million ($344 million) and affecting over 4.3 million cardholders across 193 countries. 👉 bleepingcomputer.com "(2 days ago)"

Trojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on Ukraine: A Russia-aligned threat actor used trojanized ESET installers to target Ukrainian entities with the Kalambur backdoor. 👉 thehackernews.com

Cisco Warns of New Firewall Attack: Cisco has released security updates to patch a critical vulnerability in the Unified Contact Center Express (UCCX) software, which could enable attackers to execute commands with root privileges. 👉 thehackernews.com

Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection: The threat actor known as Curly COMrades has been observed exploiting virtualization technologies as a way to bypass security solutions and execute custom malware. 👉 thehackernews.com

Google Uncovers PROMPTFLUX Malware: The novel feature is part of its "Thinking Robot" component, which periodically queries the large language model (LLM), Gemini 1.5 Flash or later in this case, to obtain new code so as to sidestep detection. 👉 thehackernews.com

Researchers Find ChatGPT Vulnerabilities: Cybersecurity researchers have disclosed a new set of vulnerabilities impacting OpenAI's ChatGPT artificial intelligence (AI) chatbot that could be exploited by an attacker to steal personal information from users' memories and chat histories without their knowledge. 👉 thehackernews.com

Mysterious 'SmudgedSerpent' Hackers Target U.S. Policy Experts Amid Iran–Israel Tensions: A never-before-seen threat activity cluster codenamed UNK_SmudgedSerpent has been attributed as behind a set of cyber attacks targeting academics and foreign policy experts between June and August 2025, coinciding with heightened geopolitical tensions between Iran and Israel. 👉 thehackernews.com

U.S. Sanctions 10 North Korean Entities for Laundering $12.7M in Crypto and IT Fraud: The U.S. Treasury Department on Tuesday imposed sanctions against eight individuals and two entities within North Korea's global financial network for laundering money for various illicit schemes , including cybercrime and information technology (IT) worker fraud . 👉 thehackernews.com

Cloudflare Scrubs Aisuru Botnet From Top Domains List: Cloudflare has responded by redacting Aisuru domain names from their top websites list. 👉 krebsonsecurity.com

Cloudflare CEO Matthew Prince says Aisuru’s overlords are using the botnet to boost their malicious domain rankings, while simultaneously attacking the company’s domain name system (DNS) service.

Alleged Jabber Zeus Coder ‘MrICQ’ in U.S. Custody: Yuriy Igorevich Rybtsov, indicted in 2012 for conspiring with the Jabber Zeus hacking group, has been arrested in Italy and is now in U.S. custody. 👉 krebsonsecurity.com

A 13-year-old indictment (PDF) filed by prosecutors in Nebraska, MrICQ was a developer for a cybercrime group known as “Jabber Zeus.”
In April 2025, Rybtsov lost a final appeal to avoid extradition to the United States.

Aisuru Botnet Shifts from DDoS to Residential Proxies: The Aisuru botnet, known for large DDoS attacks, now supports renting compromised IoT devices to proxy services for cybercriminals. 👉 krebsonsecurity.com "(1 week ago)"

A service that tracks proxy networks has seen 250 million unique residential proxy IPs in the last 90 days.
The Incessant attacks from Aisuru have caught the attention of federal authorities in the United States and Europe (many of Aisuru’s victims are customers of ISPs and hosting providers based in Europe)

Canada Fines Cybercrime-Friendly Cryptomus $176M: Financial regulators in Canada levied $176 million in fines against Cryptomus for violating anti-money laundering laws. 👉 krebsonsecurity.com "(1 week ago)"

Cryptomus is a digital payments platform that supports dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services.
FINTRAC found that Cryptomus failed to submit suspicious transaction reports in cases where there were reasonable grounds to suspect that they were related to the laundering of proceeds connected to trafficking in child sexual abuse material, fraud, ransomware payments and sanctions evasion.
These platforms were built for Russian speakers, and they each advertised the ability to anonymously swap one form of cryptocurrency for another
“These platforms were built for Russian speakers, and they each advertised the ability to anonymously swap one form of cryptocurrency for another,” the December 2024 story noted. “They also allowed the exchange of cryptocurrency for cash in accounts at some of Russia’s largest banks — nearly all of which are currently sanctioned by the United States and other western nations.”

ShinyHunters Wage Broad Corporate Extortion Spree: A cybercriminal group called ShinyHunters has launched a website that threatens to publish data stolen from dozens of Fortune 500 firms unless a ransom is paid. 👉 krebsonsecurity.com "(1 week ago)"

A month later, Google acknowledged that one of its own corporate Salesforce instances was impacted in the voice phishing campaign.
Data includes terabytes of sensitive files from thousands of customers of the enterprise software maker Red Hat.
The Scattered Lapsus$ Hunters darknet blog is currently offline. The outage appears to have coincided with the disappearance of the group’s new clearnet blog — breachforums[.]hn — which vanished after shifting its Domain Name Service (DNS) servers from DDoS-Guard to Cloudflare.
Before it died, the websites disclosed that hackers were exploiting a critical zero-day vulnerability in Oracle’s E-Business Suite software.

Feds Tie Scattered Spider Duo to $115M in Ransoms: U.S. prosecutors have levied criminal hacking charges against Thalha Jubair and Owen Flowers for allegedly being core members of Scattered Spider, a cybercrime group blamed for extorting at least $115 million in ransom payments. 👉 krebsonsecurity.com "(1 week ago)"

Self-Replicating Worm Hits Software Packages: At least 187 code packages available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and publishes those secrets on GitHub. 👉 krebsonsecurity.com "(1 week ago)"

The malware briefly infected multiple code packages from the security vendor CrowdStrike, steals and publishes even more credentials every time an infected package is installed.
The security-focused code development platform socket.dev reports the Shai-Halud attack briefly compromised at least 25 NPM code packages managed by CrowdStrike.
Once the first person got compromised, there was no stopping it,” Aikido’s Eriksen told KrebsOnSecurity. He said the first NPM package compromised by this worm appears to have been altered on Sept. 14, around 17:58 UTC.

Windows 11 Store gets Ninite-style multi-app installer feature: The Microsoft Store on the web now lets you create a multi-app install package on Windows 11 that installs multiple applications from a single installer. 👉 bleepingcomputer.com "(2 days ago)"

The End of Secrets: A Practical Roadmap to Managed Identities: Find out Is identity the weakest link in your agentic AI adoption? 👉 thehackernews.uk

Get a Free Identity Security Snapshot — No Cost, No Risk, Full Clarity: How to get the key insights on security. 👉 thehackernews.uk

The New Stack: Microsoft Launches Magentic Marketplace for AI Agents 👉 thenewstack.io

Reuters: Meta earns billions from fraudulent ads: Reuters reveals details of internal documents 👉 unn.ua

Bloomberg: Google to Offer Kalshi and Polymarket Data on Finance Searches 👉 bloomberg.com^$

Semafor: Microsoft plans to focus on superintelligence that prioritizes human control. 👉 semafor.com

The Verge: US approves pay packet that could make Elon Musk the first trillionaire. 👉 theverge.com

The Register: Union brands Rockstar's leak claim a distraction as protests hit Take-Two London. 👉 theregister.com