The Hacker News

China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns

China-linked Amaranth-Dragon and Mustang Panda target Southeast Asian governments using WinRAR exploit and PlugX phishing ...

The Double-Edged Sword of Non-Human Identities

Leaked non-human identities like API keys and tokens are becoming a major breach driver in cloud environments. Flare shows ...
The Hacker News

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

A high-severity OpenClaw flaw allows one-click remote code execution via token theft and WebSocket hijacking; patched in ...
Infosecurity Magazine

New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability

A hacking campaign took just days to exploit a newly disclosed security vulnerability in Microsoft Windows version of WinRAR, ...
DevdiscourseOpinion

Teaching AI to hack may be the only way to secure the internet

The preprint, To Defend Against Cyber Attacks, We Must Teach AI Agents to Hack, released on arXiv, challenges the prevailing ...

How recruitment fraud turned cloud IAM into a $2 billion attack surface

Adversaries weaponized recruitment fraud to steal cloud credentials, pivot through IAM misconfigurations, and reach AI ...

Hugging Face Repositories Abused in New Android Malware Campaign

Attackers exploited Hugging Face’s trusted infrastructure to spread an Android RAT, using fake security apps and thousands of ...

Crypto Market Manipulation In The Algorithmic Age: How Price Influence Has Evolved Beyond Wash Trading

How has crypto market manipulation evolved? Beyond wash trading, know how liquidity spoofing, social signal engineering, and code-based intent are shaping modern price dynamics.

The New Perimeter Is Identity — And It’s Moving Faster Than We Are

As AI shifts from helpful copilot to independent operator, enterprises are discovering that identity—not networks or ...
CoinDesk

Crypto’s worst year for hacks wasn’t a smart contract issue. It was a people problem.

Cryptocurrency’s security story is changing, and not in the way most investors expect or would like to, as while crypto losses are on the rise, so too is onchain security. Even as 2025 went down as ...
MIT Technology Review

Rules fail at the prompt, succeed at the boundary

Put rules at the capability boundary: Use policy engines, identity systems, and tool permissions to determine what the agent ...
Moneylife

Fraud Alert: Output Is Cheap, Judgment Isn’t — The AI Agents’ Moltbook Case

It began, as many turning points do, with a strangely honest confession. Aditya Agarwal, one of Facebook’s earliest engineers ...