Cyber Security News

OpenClaw, a self-hosted AI agent, rose to become GitHub’s most-starred repository weeks after its launch, drawing a large developer community and immediate researcher attention. Nobody anticipated this growth would soon become an unexpected stress test for the global vulnerability tracking ecosystem. In late February, the project began publishing security advisories at a rate few open […]

The post OpenClaw Advisory Surge Exposes Gap Between GitHub and CVE Vulnerability Tracking appeared first on Cyber Security News.

Artificial intelligence leader Anthropic has filed an unprecedented lawsuit against the United States government after being designated a “supply chain risk”. The legal action, filed in a California federal court on Monday, targets the executive office of President Donald Trump, Defense Secretary Pete Hegseth, and 16 federal agencies. The core of the dispute revolves around […]

The post Anthropic Sued the U.S. Government for Labelling Claude as ‘Supply Chain Risk’ appeared first on Cyber Security News.

Two “Important” severity vulnerabilities have been disclosed in Apache ZooKeeper, a widely used service for configuration management and naming in distributed applications, making timely security updates critical. These newly discovered flaws could allow attackers to access sensitive configuration data or bypass hostname verification to impersonate trusted servers. Both vulnerabilities affect ZooKeeper versions 3.8. x and […]

The post Apache ZooKeeper Vulnerability Allow Attackers to Access Sensitive Data appeared first on Cyber Security News.

A powerful iPhone exploit kit named “Coruna,” initially created for Western intelligence by U.S. contractor L3Harris, has fallen into the hands of Russian spies and Chinese cybercriminals.​ The Coruna toolkit features 23 different hacking components designed to compromise Apple iPhones. Trenchant originally built it, the hacking division of U.S. military contractor L3Harris, for use by […]

The post iPhone Exploit Toolkit Used by Russian Spies Likely Originated from U.S. Contractor appeared first on Cyber Security News.

A newly uncovered phishing campaign is actively targeting enterprise users by disguising malware as widely used workplace applications, including Microsoft Teams, Zoom, and Adobe Acrobat Reader. What makes this threat stand out is that the malicious files carry legitimate-looking digital signatures, making them harder for everyday users and even basic security tools to flag. The […]

The post Signed Malware Masquerading as Teams, Zoom Apps Drops RMM Backdoors appeared first on Cyber Security News.

A Chinese-linked advanced persistent threat group known as Camaro Dragon launched a targeted cyberespionage campaign against entities in Qatar just one day after the outbreak of new hostilities in the Middle East on March 1, 2026. The group used war-themed lure documents designed to look like urgent, real-world communications tied to Operation Epic Fury, tricking […]

The post Chinese APT Campaign Targets Qatar With PlugX Lures Tied to Middle East Conflict appeared first on Cyber Security News.

A dangerous malware campaign targeting software developers has surfaced, with a rogue npm package posing as a trusted developer tool to silently drain credentials, crypto wallets, SSH keys, browser sessions, and even iMessage conversations. The package, published under the name @openclaw-ai/openclawai, disguises itself as a legitimate command-line installer called “OpenClaw Installer” while deploying a deeply hidden […]

The post GhostClaw Mimic as OpenClaw to Steal Everything from Developers appeared first on Cyber Security News.

ScamAgent is an autonomous, multi-turn AI framework developed by researcher Sanket Badhe at Rutgers University that demonstrates how large language models (LLMs) can be weaponized to conduct fully automated scam calls. By integrating goal-driven planning, contextual memory, and real-time text-to-speech (TTS) synthesis, the system successfully bypasses existing AI safety guardrails to simulate highly realistic social […]

The post ScamAgent- AI Agent Built by Researchers that Run Fully Autonomous Scam Calls appeared first on Cyber Security News.

A social-engineering campaign abusing Microsoft Teams and Windows Quick Assist is evolving again, with BlueVoyant warning that the attackers are now deploying a newly identified malware family called A0Backdoor after convincing employees to hand over remote access. The activity overlaps with tactics previously tied to Blitz Brigantine, also tracked as Storm-1811, a financially motivated cluster […]

The post Hackers Attack Employees Over Microsoft Teams to Trick Them Into Granting Remote Access appeared first on Cyber Security News.

A convincing fake website posing as the popular Mac utility CleanMyMac is actively pushing dangerous macOS malware called SHub Stealer onto unsuspecting users. The site, hosted at cleanmymacos[.]org, has no connection to the real CleanMyMac software or its developers, MacPaw. Once inside a system, SHub Stealer harvests saved passwords, browser data, Apple Keychain contents, cryptocurrency […]

The post Hackers Use Fake CleanMyMac Site to Deploy SHub Stealer and Hijack Crypto Wallets appeared first on Cyber Security News.

A new data-stealing malware called BoryptGrab has been quietly spreading across Windows systems through a network of fake GitHub repositories, tricking users into downloading what appear to be popular free software tools. The campaign, which has been active since at least April 2025, uses search engine manipulation to make these malicious repositories look legitimate, luring […]

The post BoryptGrab Stealer Spreads via Fake GitHub Repositories, Stealing Browser and Crypto Wallet Data appeared first on Cyber Security News.

The Iranian advanced persistent threat group known as Seedworm — also tracked as MuddyWater, Temp Zagros, and Static Kitten — has been found actively operating inside the networks of multiple U.S. organizations since early February 2026, raising serious alarms across the cybersecurity community. The group’s intensified activity follows the coordinated U.S. and Israeli military strikes […]

The post Iran-Linked Hackers Target U.S. Critical Infrastructure Amid Rising Cyber Threat Activity appeared first on Cyber Security News.

A sophisticated credential-stealing campaign built around a tool called VIP Keylogger has emerged as a serious threat to organizations and individuals. Unlike conventional malware that drops files onto a victim’s hard drive, this keylogger runs entirely in memory, making it far harder for traditional security tools to detect. The campaign was first spotted through suspicious […]

The post MaaS VIP Keylogger Campaign Uses Steganography and In-Memory Execution to Steal Credentials at Scale appeared first on Cyber Security News.

Signal has officially confirmed an ongoing wave of targeted phishing campaigns resulting in successful account takeovers for high-profile users, including journalists and government officials. The encrypted messaging service explicitly stated that its core infrastructure and end-to-end encryption protocols remain intact and entirely uncompromised. Rather than exploiting technical vulnerabilities, threat actors are bypassing security boundaries by […]

The post Signal Confirms Targeted Phishing Attacks Resulting in Account Takeovers appeared first on Cyber Security News.

A sprawling cybercrime ecosystem rooted in Vietnam has been linked to large-scale fraudulent account registration campaigns targeting service providers and online platforms worldwide. Researchers traced this activity to an infrastructure cluster internally designated O-UNC-036, which uses disposable email addresses and automated bots to manufacture fake digital identities at an alarming scale.​ Fraudulent online accounts are […]

The post Vietnam-Based Cybercrime Network Enables Fraudulent Account Signups at Scale appeared first on Cyber Security News.

Philadelphia, PA, United States, March 9th, 2026, CyberNewswire Security Risk Advisors (SRA) is proud to announce the release of its inaugural report, The Purple Perspective 2026. This comprehensive analysis examines real-world detection and prevention performance against a curated set of high-priority adversary techniques, providing actionable insights to improve cybersecurity defenses. The report is based on the […]

The post Security Risk Advisors Releases “The Purple Perspective 2026” Report appeared first on Cyber Security News.

Pakistan-based threat actor APT36, widely known as Transparent Tribe, has shifted away from carefully crafted tools to a new approach called “vibeware” — AI-assisted malware produced in high volumes with little regard for quality. Rather than investing time in one sophisticated piece of code, the group uses AI coding tools to pump out dozens of […]

The post Transparent Tribe’s ‘Vibeware’ Shift Signals Rise of AI-Generated Malware at Industrial Scale appeared first on Cyber Security News.

A newly discovered vulnerability is challenging the long-held belief that macOS systems are inherently immune to malware. Security researchers from Kaspersky’s Global Research and Analysis Team (GReAT) have identified a critical flaw that allows threat actors to execute malicious code on Macs simply by processing a tampered image file. ExifTool, a widespread open-source utility for […]

The post Critical ExifTool Flaw Lets Malicious Images Trigger Code Execution on macOS appeared first on Cyber Security News.

A severe vulnerability affecting multiple Hikvision products was added to the Known Exploited Vulnerabilities (KEV) catalog on March 5, 2026. Tracked globally under CVE-2017-7921, this security flaw poses a significant risk to organizations that rely on these popular surveillance systems. The flaw enables malicious users to bypass standard security checks, escalate their privileges, and gain […]

The post Hikvision Multiple Products Vulnerability Allows Malicious Users to Escalate Privileges appeared first on Cyber Security News.

A wave of counterfeit AI-powered browser extensions has silently breached over 20,000 enterprise environments, compromising the chat histories of employees who routinely used AI tools for work. These malicious Chromium-based extensions disguised themselves as legitimate AI assistant tools and accumulated close to 900,000 installs before the threat was surfaced. What made these extensions particularly alarming […]

The post Microsoft Warns Fake AI Browser Extensions Compromised Chat Histories Across 20,000+ Enterprise Tenants appeared first on Cyber Security News.