CSOonline

13 ways attackers use generative AI to exploit your systems

Artificial intelligence is revolutionizing the technology industry and this is equally true for the cybercrime ecosystem, as cybercriminals are increasingly leveraging generative AI to improve their ...
CoinDesk

How AI is helping retail traders exploit prediction market 'glitches' to make easy money

A fully automated trading bot executed 8,894 trades on short-term crypto prediction contracts and reportedly generated nearly $150,000 without human intervention. The strategy, described in a recent ...
The Hacker News

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an attacker to seize control of susceptible devices. The ...
Dark Reading

Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot

A critical security vulnerability in a Voice over Internet Protocol (VoIP) phone deployed in small and midsized businesses (SMBs), hotels, call centers, and other organizations globally has ...
thecyberexpress

Russian APT28 Exploit Zero-Day Hours After Microsoft Discloses Office Vulnerability

Ukraine’s cyber defenders warn Russian hackers weaponized a Microsoft zero-day within 24 hours of public disclosure, targeting government agencies with malicious documents delivering Covenant ...
Fox News

Minnesota fraud case is 'canary in the coal mine' for government systems — including ...

A Minnesota fraud scandal is a "canary in the coal mine" for how easily swindles can seep into government systems — including election administration — Republican election attorney Justin Riemer told ...
CoinTelegraph

SwapNet exploit drains up to $13.3M from Matcha Meta users

Matcha Meta urged users to revoke one-time approvals for SwapNet’s router contract after a smart-contract vulnerability saw around $13.3 million stolen on the Base blockchain. Update, Jan. 27, 9:15 am ...
Bleeping Computer

Hackers exploit critical telnetd auth bypass flaw to get root

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present in the GNU InetUtils telnetd server for 11 years. The security issue is ...
Dexerto

Arc Raiders pushes emergency patch after PC players exploit hidden dev console

Embark Studios has released an emergency hotfix for ARC Raiders after PC players were found exploiting hidden developer console commands to gain a major competitive advantage in live matches. The ...
Dexerto

Arc Raiders exploit lets you see in the dark & it’s “basically cheating”

Many Arc Raiders players on PC have discovered ways to adjust their settings to gain a huge advantage by being able to see in the dark and through smoke. By using console commands and other graphics ...
SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Fresh attacks targeted three VMware ESXi vulnerabilities that were disclosed in March 2025 as zero-days. A Chinese threat actor built an exploit for three VMware ESXi vulnerabilities that were patched ...