Aggregator

CISA ordered U.S. government agencies on Friday to secure their BeyondTrust Remote Support instances against an actively exploited vulnerability within three days. [...]

Microsoft warns of a new ClickFix variant that tricks users into running DNS commands to fetch malware via nslookup. Microsoft has revealed a new ClickFix variant that deceives users into running a malicious nslookup command through the Windows Run dialog to retrieve a second-stage payload via DNS. ClickFix typically uses fake CAPTCHA or error messages […]

A newly disclosed vulnerability in an industrial control system (ICS) monitoring solution has raised concerns across multiple critical infrastructure sectors. Published by CISA under advisory code ICSA-26-043-10, the flaw has been assigned CVE-2026-1358 and carries a CVSS v3 score of 9.8, indicating critical severity. According to the advisory released on February 12, 2026, the vulnerability affects all versions of Airleader […]

The post Critical Airleader Vulnerability Exposes Systems to Remote Code Execution Attacks appeared first on Cyber Security News.

Peter Steinberger, the Austrian software developer who vibe coded the popular OpenClaw autonomous AI agent, has joined OpenAI. “My next mission is to build an agent that even my mum can use. That’ll need a much broader change, a lot more thought on how to do it safely, and access to the very latest models and research,” he shared over the weekend. The reason why Steinberger chose OpenAI to achieve this goal is, professedly, his … More →

The post OpenClaw creator Peter Steinberger joins OpenAI appeared first on Help Net Security.

OpenClaw founder Peter Steinberger has officially joined OpenAI, marking a notable collaboration between open-source innovation and one of the world’s leading AI research organizations. According to Steinberger’s announcement titled “OpenClaw, OpenAI and the Future,” his new role focuses on advancing AI agents to make them accessible and secure for all users. Steinberger, widely known for blending creativity with engineering efficiency, revealed […]

The post OpenClaw Founder Peter Steinberger Officially Joins OpenAI appeared first on Cyber Security News.

Брюссель решил бороться с нашей привычкой залипать на короткие видео.

​性能、开源、性价比，千问 3.5 全都要。

A critical vulnerability has been discovered in the file transfer solution from Soliton Systems K.K., potentially allowing attackers to execute arbitrary system commands on affected installations. The issue, tracked as CVE-2026-25108, has been assessed with a CVSS v3.0 base score of 8.8, indicating a severe command injection flaw. The flaw stems from an OS command injection vulnerability (CWE-78) within […]

The post FileZen File Transfer App Vulnerability Enables Arbitrary Command Execution appeared first on Cyber Security News.

伪装成奇安信专杀工具CS木马样本分析

Technologies are evolving fast, reshaping economies, governance, and daily life. Yet, as innovation accelerates, so do digital risks. Technological change is no longer abstract for such a country as Lithuania, as well. From e-signatures to digital health records, the country depends on secure systems.  Cybersecurity has become not only a technical challenge but a societal one – demanding

Разработчики представили механизмы защиты от угроз, существующих в лабораторных условиях.

A high severity vulnerability in Google Chrome and allows remote attackers to execute code

OpenClaw 开源项目的创始人 Peter Steinberger 宣布加盟 OpenAI，而 OpenClaw 将由基金会管理。OpenClaw 是一个开源的自主 AI 虚拟助理软件项目，最初于 2025 年末以 Clawdbot 的名字在 GitHub 上发布，后更名为 Moltbot，最终定为现名。2026 年初，该项目因能根据用户指令在应用和在线服务中自主处理复杂任务而受到关注。OpenClaw 可部署在 MacOS、Windows 等本地设备上，能调用其他 AI 大模型与 API，通过 WhatsApp、Telegram、Signal、Discord 等即时通讯平台接收用户发送的文本指令，实现安排日程、发送消息、整理文件、编写代码等工作。

Learn when SaaS teams should adopt passwordless authentication to boost security, reduce friction, and accelerate secure product development.

The post Building Secure Authentication Faster: When SaaS Teams Should Go Passwordless appeared first on Security Boulevard.

The UK government has announced immediate action to force AI chatbot providers to comply with laws requiring online platforms to protect children from illegal and harmful content. Providers that fail to meet these duties will face legal consequences. This follows recent intervention after non-consensual intimate images were shared through the AI chatbot Grok, prompting the removal of a related function. The Prime Minister said the government will take new legal powers to support swift action … More →

The post UK sets course for stricter AI chatbot regulation appeared first on Help Net Security.

Vim 文本编辑器项目在情人节释出了 v9.2 版本。主要变化包括：实验性 Wayland 支持；XDG Base Directory Specification 目录标准支持——即将配置文件、缓存数据、用户数据等储存在不同目录；HiDPI 显示器的现代默认配置；新的代码补全功能；改进 diff 模式；新增垂直标签面板；Windows 版本有了原生深色模式支持，等等。

Как ДНК-оригами может стать ключом к главной вакцине века.

A vulnerability categorized as problematic has been discovered in pretix pretix-newsletter up to 1.x/2.0.0. Impacted is an unknown function of the component Placeholder Handler. Executing a manipulation can lead to dynamic variable evaluation. This vulnerability is handled as CVE-2026-2452. The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.