SecurityWeek

In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware

Symantec vulnerability, Android malware, anti-ClickFix mechanism added to macOS, and FBI hack classified as major incident.
SecurityWeek

T-Mobile Sets the Record Straight on Latest Data Breach Filing

T-Mobile USA has provided clarification on a recent data breach notification, stating that it was an insider incident with ...
SecurityWeek

North Korean Hackers Drain $285 Million From Drift in 10 Seconds

North Korean hackers drained over $285 million from five Drift vaults in 10 seconds in a carefully prepared crypto heist.
SecurityWeek

Critical ShareFile Flaws Lead to Unauthenticated RCE

Two critical-severity ShareFile vulnerabilities allow remote attackers to bypass authentication and execute arbitrary code.
SecurityWeek

React2Shell Exploited in Large-Scale Credential Harvesting Campaign

The UAT-10608 hacking group is using automated scanning and scripts to exploit React2Shell in a large-scale credential harvesting campaign.
SecurityWeek

TrueConf Zero-Day Exploited in Asian Government Attacks

A Chinese threat actor was caught exploiting CVE-2026-3502, a zero-day vulnerability in TrueConf, to hack an Asian government.
SecurityWeek

Mobile Attack Surface Expands as Enterprises Lose Control

Mobile security risks are increasing as enterprises struggle with outdated devices, risky apps, and expanding attack surfaces ...