Security
China’s spies offer freelancers lucrative side hustles via job networks in hunt for secrets, agencies warn
Five Eyes intelligence agencies say Chinese spies are posing as recruiters on job platforms, using paid research assignments, encrypted messaging apps and cryptocurrency payments to lure targets with access to sensitive information.
Read more about China’s spies offer freelancers lucrative side hustles via job networks in hunt for secrets, agencies warn
Curl creator who called Mythos a “PR stunt” says AI will not take human jobs, but might kill bug bounties
Curl receives a new AI-generated vulnerability report every 18 hours, and most are accurate. That's the problem.
Read more about Curl creator who called Mythos a “PR stunt” says AI will not take human jobs, but might kill bug bounties
Ultrahuman data breach exposes user info via internal tool
Wearables maker Ultrahuman has informed customers of a data breach after discovering unauthorized access to its systems.
Read more about Ultrahuman data breach exposes user info via internal tool
Stripe turns a blind eye to friendly fraud: “The customer appeared to enjoy screwing me over”
A business owner says he was scammed twice by a buyer who then gloated about it by sending him insulting emails. He says he reported the incident to Stripe, but the platform’s response was disappointing.
Read more about Stripe turns a blind eye to friendly fraud: “The customer appeared to enjoy screwing me over”
Pentesters turn up the heat on Shelly as Bluetooth thermostat flaw leaves smart homes exposed
A researcher has uncovered a design flaw in Shelly’s Wall Display that left users with a difficult choice: disable a key advertised feature, or leave their smart home device exposed to unauthenticated Bluetooth access.
Read more about Pentesters turn up the heat on Shelly as Bluetooth thermostat flaw leaves smart homes exposed
Researcher easily finds five OpenClaw zero-days just as Microsoft expands its use of platform
Five zero-day flaws in OpenClaw allowed attackers to bypass trust boundaries and hijack AI agent access across multiple messaging platforms, new research has found – right before Microsoft expands its use of the open-source platform.
Read more about Researcher easily finds five OpenClaw zero-days just as Microsoft expands its use of platform
Hackers could tamper with fuel storage systems, US warns
Hackers and cybercriminals have set their sights on automatic tank gauge (ATG) systems. When compromised, this could lead to mayhem and societal disruption. ATG owners and operators are urged to harden the defenses of these systems.
Read more about Hackers could tamper with fuel storage systems, US warns
Major data breach hits hotel sector across Europe, guest data used in phishing attacks
Dozens of hotels in the Netherlands, Belgium, and Ireland have been affected by a data breach in which customer data and reservation information were stolen.
Read more about Major data breach hits hotel sector across Europe, guest data used in phishing attacks
Crooks behind 27,000 illegal streaming URLs nabbed in major operation
Just in time for the FIFA World Cup 2026, an international operation has successfully targeted the criminal networks making millions from illegal access to premium sports broadcasts.
Read more about Crooks behind 27,000 illegal streaming URLs nabbed in major operation
Emmys data leak: update exposes access to award submissions
Emmy.tv, the official platform for watching the Emmys, left access keys publicly accessible, exposing access to its cloud storage instances.
Read more about Emmys data leak: update exposes access to award submissions
Experts: Anthropic’s move to expand Project Glasswing will end in Mythos public release
Anthropic is expanding access to its flagship Project Glasswing and powerful Mythos AI model to an additional 150 partners in more than 15 countries. This signals that the company is preparing for the model’s public release – and that the hard part is just beginning.
Read more about Experts: Anthropic’s move to expand Project Glasswing will end in Mythos public release
How to protect your entire digital life using just one tool in 2026
Open your bank statement and count the security subscriptions: there's probably a VPN, a password manager, an antivirus, maybe a...
Read more about How to protect your entire digital life using just one tool in 2026
Passwords and locations at risk in alleged Grindr data leak
A handful of alleged Grindr user records just surfaced on a cybercrime forum, putting users at risk of credential stuffing attacks.
Read more about Passwords and locations at risk in alleged Grindr data leak
IKEA targeted by teenage hackers who hit Microsoft and Uber
The same attackers who hit Microsoft and Uber are now targeting IKEA, according to a recent breach claim. IKEA told Cybernews, that they are investigating.
Read more about IKEA targeted by teenage hackers who hit Microsoft and Uber
Russian spy campaigns are increasingly targeting Western technological know-how, Europe warns
European intelligence agencies are warning that Russia is now operating more aggressively to steal information about Western technology and defense secrets. Sectors such as weaponry, space, and marine are the primary targets.
Read more about Russian spy campaigns are increasingly targeting Western technological know-how, Europe warns
Fake McAfee emails refuse to die as new round of phishing emails targets consumers
A new wave of fake McAfee renewal emails proves that sometimes the oldest tricks are the best ones, reviving a long-running scam that security experts say continues to thrive by exploiting fear and confusion around antivirus subscriptions.
Read more about Fake McAfee emails refuse to die as new round of phishing emails targets consumers
Putin orders medical services and payment access during mobile internet shutdowns
Russian President Vladimir Putin has ordered the prime minister and the director of the Federal Security Service (FSB) to ensure access to key medical, information, and payment services during periods when mobile internet service is limited.
Read more about Putin orders medical services and payment access during mobile internet shutdowns
China demands cybersecurity proof from foreign device makers
China is introducing a new cybersecurity labeling system for foreign makers of internet-connected devices. Ironically, this comes amid accusations by Western governments that China-linked hacking groups have exploited vulnerable routers and smart devices to support cyber operations worldwide.
Read more about China demands cybersecurity proof from foreign device makers
North Korean hackers target macOS users with advanced malware campaign
Security researchers have uncovered a sophisticated macOS-focused malware campaign linked to the North Korean threat group Sapphire Sleet, also known as BlueNoroff or UNC1069.
Read more about North Korean hackers target macOS users with advanced malware campaign
32M Bumble users’ data leaked online, hackers claim
Millions of alleged user records from the popular dating app Bumble have been posted on a data leak forum.
Read more about 32M Bumble users’ data leaked online, hackers claim
