InfoWorld

Open source maintainers are being targeted by AI agent as part of ‘reputation farming’

“Once contribution and reputation building can be automated, the attack surface moves from the code to the governance process around it. Projects that rely on informal trust and maintainer intuition ...
Connecticut Post

Former Ansonia man linked to child sex abuse material through Dropbox account, police say

ANSONIA — A former Ansonia man possessed images of children as young as pre-kindergarten age being sexually abused by adult males, according to the warrant for his arrest. Alexander Beardsley, 33, ...
CSOonline

New phishing attack leverages PDFs and Dropbox

Even as they become ever more stealthy with AI-driven tools, threat actors are not giving up on simple, tried-and-true phishing — because it still works. According to new research, attackers are still ...
The Hacker News

SolarWinds Fixes Four Critical Web Help Desk Flaws With Unauthenticated RCE and Auth Bypass

SolarWinds has released security updates to address multiple security vulnerabilities impacting SolarWinds Web Help Desk, including four critical vulnerabilities that could result in authentication ...
Ars Technica

Why has Microsoft been routing example.com traffic to a company in Japan?

From the Department of Bizarre Anomalies: Microsoft has suppressed an unexplained anomaly on its network that was routing traffic destined to example.com—a domain reserved for testing purposes—to a ...
The Dallas Weekly

Kai Cenat Sets Powerful Example for Young Readers with Daily Reading Videos

Twitch streamer and internet star, Kai Cenat, has set himself the goal of reading every day, out loud, on camera, to improve his articulation skills. However, his latest venture has been praised by ...
The Hacker News

Multi-Stage Phishing Campaign Targets Russia with Amnesia RAT and Ransomware

A new multi-stage phishing campaign has been observed targeting users in Russia with ransomware and a remote access trojan called Amnesia RAT. "The attack begins with social engineering lures ...
GitHub

AbiCharles/mcp_priorauth_demo

A small, end‑to‑end demo that uses Model Context Protocol (MCP) to evaluate prior authorization requests for pharmacy benefits. It ships with: UI (client/app.py) builds a patient payload from form ...
Bleeping Computer

Hackers exploit critical telnetd auth bypass flaw to get root

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present in the GNU InetUtils telnetd server for 11 years. The security issue is ...
FiercePharma

ST Pharm inks $56M deal to produce API for a US biotech

ST Pharm has struck a deal with an undisclosed U.S.-based biotech to produce active pharmaceutical ingredients (APIs) for an upcoming oligonucleotide-based treatment. The Korean CDMO revealed the ...
Bleeping Computer

Fortinet confirms critical FortiCloud auth bypass not fully patched

Days after admins began reporting that their fully patched firewalls are being hacked, Fortinet confirmed it's working to fully address a critical FortiCloud SSO authentication bypass vulnerability ...