Discord-Linked Group Accessed Anthropic’s Claude Mythos AI in Vendor Breach Anthropic is investigating a vendor breach after a Discord-linked group accessed its Claude Mythos AI model, with no evidence of impact on core systems.

📢⚠️ Discord-linked group accessed Claude Mythos Preview through a third-party vendor environment, prompting an investigation by Anthropic.

Read: hackread.com/discord-acce...

#CyberSecurity #Anthropic #Mythos #Claude #AI #Discord #DataBreach

Mustang Panda Hits India and S. Korea with Updated LOTUSLITE Backdoor Mustang Panda is using a new LOTUSLITE backdoor to target Indian banks and Korean diplomats. Learn how this DLL sideloading attack works.

📢⚠️ Watch out as China-linked #MustangPanda is deploying an updated LOTUSLITE backdoor to target Indian banks and South Korean diplomats.

Read: hackread.com/mustang-pand...

#CyberSecurity #Malware #India #SouthKorea #China

Bluesky Back Online After DDoS Attack, as Iran-Linked 313 Team Takes Credit Bluesky is back online after a roughly 24-hour DDoS attack disrupted services, with the Iran-linked 313 Team claiming responsibility and no data breach reported.

📢⚠️ Bluesky is back online after a roughly 24-hour DDoS attack disrupted services, with the Iran-linked 313 Team claiming responsibility.

Read: hackread.com/bluesky-onli...

#CyberSecurity #CyberAttack #DDoSAttack #Bluesky #Iran #313Team

Microsoft Vulnerabilities Drop, But Critical Flaws Double, Report Warns Microsoft vulnerabilities fall, but critical flaws double, BeyondTrust report highlights rising risk in Microsoft Office, Azure, and cloud systems.

📢⚠️ #Microsoft vulnerabilities fall, but critical flaws double. BeyondTrust report highlights rising risk in Microsoft Office, Azure, and cloud systems.

Read: hackread.com/microsoft-vu...

#CyberSecurity #Vulnerability #Windows #Azure #0day

Grinex crypto exchange shuts down, blames Western agencies for $13.7M breach Grinex exchange collapses after $13.7M breach, blames Western spies as Chainalysis flags possible exit scam and sanctions evasion network links claims.

📢⚠️ Grinex crypto exchange collapses after $13.7M breach, blames Western spies as researchers flag possible exit scam.

Read: hackread.com/grinex-crypt...

#CyberSecurity #DataBreach #Crypto #Grinex #ExitScam

Vercel Breach Linked to Context.ai, ShinyHunters Says It’s Not Involved Vercel confirms a breach linked to Context.ai, while a hacker lists alleged data for $2M. ShinyHunters denies involvement in the incident.

📢⚠️ Vercel confirms a breach linked to #ContextAI as a hacker lists alleged data for $2M. ShinyHunters denies involvement and flags impostors.

Read: hackread.com/vercel-breac...

#CyberSecurity #Vercel #DataBreach #ShinyHunters

Fake TikTok Downloaders on Chrome and Edge Spying on 130,000 Users Over 130,000 users are at risk from fake TikTok downloader extensions on Chrome and Microsoft Edge with scammers spying and stealing user data.

📢⚠️ An ongoing malicious campaign called #StealTok is using browser extensions on Chrome and Microsoft Edge to steal user data and spy on their browser activity.

Read: hackread.com/fake-tiktok-...

#CyberSecurity #Malware #TikTok #Chrome #Scam

British Hacker Tyler Buchanan Pleads Guilty to $8M Hacking Scheme in US Tyler Robert Buchanan, a 24-year-old British hacker linked to Scattered Spider, admits to a multi-year US hacking scheme involving $8M in crypto theft.

📢 Tyler Robert Buchanan, a 24-year-old British hacker linked to Scattered Spider, admits to a multi-year US hacking scheme involving at least $8M in crypto theft.

Read: hackread.com/british-hack...

#CyberSecurity #CyberCrime #ScatteredSpider #Phishing

52M-Download protobuf.js Library Hit by RCE in Schema Handling Critical RCE flaw in protobuf.js lets attackers execute code via malicious schemas. Learn who is at risk, affected versions, and how to fix it.

📢⚠️ Critical RCE flaw in protobuf.js exposes apps to code execution via malicious schemas - 52M weekly downloads, patch now available.

Read: hackread.com/52m-download...

#CyberSecurity #RCE #NodeJS #Vulnerability #DevSecOps

ShowDoc Vulnerability Patched in 2020 Now Used in Active Server Takeovers Hackers are exploiting a 5-year-old ShowDoc vulnerability (CVE-2025-0520) to deploy web shells, enabling RCE and full server takeover worldwide.

📢⚠️ Hackers are exploiting a 5-year-old #ShowDoc vulnerability (CVE-2025-0520) to deploy web shells, enabling RCE and full server takeover worldwide.

Read: hackread.com/showdoc-vuln...

#CyberSecurity #Vulnerability #CyberAttacks

Operation PowerOFF: 75K Users of DDoS-for-Hire Services Identified and Warned Operation PowerOFF identifies and warns 75K users of DDoS-for-hire services, nets 4 arrests, and seizes 53 domains in a global Europol-led crackdown.

📢⚠️ #OperationPowerOFF - Authorities identify and warn 75,000 users of DDoS-for-hire services worldwide, arresting 4, and seizing 53 domains.

Read: hackread.com/operation-po...

#CyberSecurity #CyberCrime #DDoS #DDoSforHire #Europol

New RecruitRat, SaferRat, Astrinox, Massiv Android Malware Found Targeting 800 Apps Zimperium reveals four active Android malware campaigns, RecruitRat, SaferRat, Astrinox, and Massiv, targeting over 800 banking apps globally.

📢⚠️ Watch out as 4 new Android malware families, RecruitRat, SaferRat, Astrinox, and Massiv, have been found targeting 800 banking and crypto apps.

Read: hackread.com/recruitrat-s...

#CyberSecurity #Android #Malware #Scam

New Mirai Variant Nexcorium Hijacks DVR Devices for DDoS Attacks Fortinet team has discovered Nexcorium, a new Mirai-based malware targeting TBK DVR systems to turn them into bots for DDoS attacks.

📢⚠️ #Nexcorium, a new Mirai-based malware, is targeting DVR devices to turn them into a botnet for DDoS attacks worldwide.

Read: hackread.com/mirai-varian...

#CyberSecurity #Mirai #DDoS #Malware #Botnet

New ZionSiphon Malware Discovered Targeting Israeli Water Systems Researchers spot ZionSiphon malware targeting Israeli water systems, focusing on ICS protocols and plant configurations to enable real-world disruption.

📢⚠️ New #ZionSiphon malware targets Israeli water systems, scanning ICS protocols and spreading via USB. Researchers say it could alter pressure and raise chlorine levels in plants.

Read: hackread.com/zionsiphon-m...

#CyberSecurity #Malware #ICS #OTSecurity #Israel #Iran

New CGrabber and Direct-Sys Malware Spread Through GitHub ZIP Files Hackers spread CGrabber and Direct-Sys malware through GitHub ZIP files, bypassing security tools to steal passwords, crypto wallets, and user data.

📢⚠️ Watch out as hackers spread CGrabber and Direct-Sys malware through GitHub ZIP files, bypassing security tools to steal passwords, crypto wallets, and user data.

Read: hackread.com/cgrabber-dir...

#CyberSecurity #GitHub #CGrabber #DirectSys #Malware

OpenAI Launches GPT-5.4-Cyber to Boost Defensive Cybersecurity OpenAI launches GPT-5.4-Cyber, a security-focused AI model designed to help defenders vulnerabilities, analyze malware and strengthen cybersecurity.

OpenAI launches GPT-5.4-Cyber, a security-focused AI model designed to help defenders vulnerabilities, analyze malware, and strengthen cyber defenses.

Read: hackread.com/openai-gpt-5...

#CyberSecurity #OpenAI #ChatGPT #GPT54Cyber #AI #Malware

Researchers Say Fiverr Left User Files Open to Google Search Private Fiverr user documents, including tax records and IDs, were reportedly found in Google search results due to a storage configuration issue.

Researchers say #Fiverr left user files on Cloudinary open to Google Search, exposing sensitive documents like IDs and tax records.

Read: hackread.com/fiverr-left-...

#Cloudinary #CyberSecurity #Privacy #Google

Fake Claude AI Installer Targets Windows Users with PlugX Malware Fake Claude AI installer mimicking Anthropic spreads PlugX malware on Windows, using DLL sideloading to gain persistent remote access to infected systems.

Fake Claude AI installer mimicking Anthropic spreads PlugX RAT on Windows, using DLL sideloading to gain persistent remote access to infected systems.

Read: hackread.com/fake-claude-...

#CyberSecurity #ClaudeAI #Windows #PlugX #Malware

Fake Ledger Live App on Apple Store Linked to $9.5M Crypto Theft Apple approved a fake Ledger Live app on its App Store, allowing scammers to steal $9.5 million from more than 50 users. Did you install this app?

📢⚠️ Apple approved a fake #LedgerLive app on its App Store, allowing scammers to steal $9.5 million from more than 50 users. Be sure you didn't install this app!

Read: hackread.com/fake-ledger-...

#CyberSecurity #Ledger #LedgerWallet #Crypto #Scam #Apple

ShinyHunters Leak Rockstar Games Data, No Player Records Impacted ShinyHunters hackers leak 7.54 GB of Rockstar Games data from Snowflake analytics systems, confirming no player records or personal information were exposed.

ShinyHunters hackers leaked 7.54 GB of #RockstarGames data from Snowflake analytics systems, confirming no player records or personal information were exposed.

Read: hackread.com/shinyhunters...

#CyberSecurity #Snowflake #ShinyHunters #DataBreach #Anodot

13.5M Device Botnet Drives 2 Tbps DDoS Attacks on FinTech, Qrator Finds Qrator Labs reveals DDoS attacks driven by a 13.5M-device botnet, reaching 2 Tbps, with FinTech and betting firms among top targets.

A Qrator Labs report shows DDoS attacks scaling fast, with a 13.5M-device botnet now capable of launching 2 Tbps attacks. FinTech and betting sectors remain top targets.

Read: hackread.com/botnet-devic...

#DDoS #CyberSecurity #FinTech #Botnet #CyberAttack

Active HanGhost Loader Campaign Targets Enterprise Payment and Logistics Workflows Active HanGhost Loader campaign targets enterprise payment and logistics workflows with fileless attacks, multi-stage execution, and stealthy malware delivery.

Active HanGhost Loader campaign targets enterprise payment and logistics workflows with fileless attacks, multi-stage execution, and stealthy malware delivery.

Read: hackread.com/active-hangh...

#Cybersecurity #Malware #HanGhost #CyberAttack

wolfSSL Vulnerability Hits IoT, Routers and Military Systems, Update Now! Critical wolfSSL flaw CVE-2026-5194 allows digital ID forgery across billions of devices, update to version 5.9.1 to fix the issue and reduce risk.

Critical wolfSSL flaw (CVE-2026-5194) allows digital ID forgery across billions of devices. Update to version 5.9.1 to fix the issue and reduce risk

Read: hackread.com/wolfssl-vuln...

#CyberSecurity #Vulnerability #wolfSSL #IoT

Kraken Exchange Faces Extortion After Insider Recorded System Footage Kraken exchange faces extortion after a staff member misused access to record internal systems, about 2,000 accounts affected, no funds or systems breached.

The US-based Kraken crypto exchange is facing extortion demands after an insider, a staff member, misused their access to record internet systems.

Read: hackread.com/kraken-excha...

#CyberSecurity #Crypto #CyberCrime #Kraken #Extortion

Booking.com Confirms Data Breach as Hackers Access Customer Details Booking.com confirms a data breach exposing customer details to hackers. No payment data accessed, but users face risk of targeted phishing scams now!

Another day, another data breach: #Booking.com confirms a data breach after hackers accessed customer details, including names, emails, and booking info.

Read: hackread.com/booking-com-...

#BookingCom #DataBreach #CyberSecurity #Phishing

Ransomware-Linked ViperTunnel Malware Hits UK and US Businesses ViperTunnel is a Python-based backdoor linked to DragonForce ransomware that targets businesses using Windows servers across the US and the UK.

📢⚠️ #ViperTunnel is a Python-based backdoor linked to DragonForce ransomware that targets businesses using Windows servers in the US and the UK.

Read: hackread.com/ransomware-v...

#CyberSecurity #Malware #DragonForce #Ransomware

OpenAI Rotates macOS Certificates Following Axios Supply Chain Breach OpenAI rotates macOS certificates after downloading a compromised Axios version, urging users to update apps before revoked certificates are blocked in May 2026.

OpenAI rotates macOS certificates after downloading a compromised Axios version, urging users to update apps before revoked certificates are blocked in May 2026.

Read: hackread.com/openai-macos...

#OpenAI #Axios #macOS #DatBreach

BITTER APT Uses Signal, Google, and Zoom Lures to Spread ProSpy Spyware BITTER APT spreads ProSpy and ToSpy via Signal, Google, and Zoom lures, targeting journalists through LinkedIn and iMessage spearphishing.

Watch out, as in an ongoing campaign, BITTER APT is spreading ProSpy and ToSpy spyware via Signal, Google, and Zoom lures to target journalists through LinkedIn and iMessages.

Read: hackread.com/bitter-apt-s...

#CyberSecurity #LinkedIn #iMessage #Spyware #BitterAPT

OpenSSF Flags Malware Campaign on Slack Posing as Linux Foundation Figures OpenSSF warns hackers impersonate Linux Foundation leaders on Slack, tricking developers into installing malware that can compromise entire systems.

#OpenSSF warns of hackers impersonating Linux Foundation leaders on Slack, tricking developers into installing malware that can compromise entire systems.

Read: hackread.com/openssf-malw...

#CyberSecurity #Malware #LinuxFoundation #Scam

Alleged German DDoS-for-Hire Kingpin Behind Fluxstress Caught in Thailand Alleged German cybercrime figure behind Fluxstress and Neldowner arrested in Thailand after years running global DDoS-for-hire services across countries.

Alleged German cybercrime figure Noah Christopher has been arrested in Thailand after years running global DDoS-for-hire services, including Fluxstress and Neldowner, worldwide.

Read: hackread.com/german-ddos-...

#CyberCrime #CyberSecurity #DDoS #Fluxstress #Neldowner