Aggregator

21,000+ OpenClaw AI Instances With Personal Configurations Exposed Online

Cyber Security News
2 months ago

21,000+ publicly exposed instances of an open-source personal AI assistant, raising significant concerns about unprotected access to sensitive user configurations and personal data. OpenClaw, a rapidly emerging personal AI assistant created by Austrian developer Peter Steinberger, has experienced explosive growth since late January 2026. The project, which underwent multiple branding iterations, initially launched as Clawdbot […]

The post 21,000+ OpenClaw AI Instances With Personal Configurations Exposed Online appeared first on Cyber Security News.

Abinaya

NationStates Suffers Databreach – Game site Temporarily Offline

Cyber Security News
2 months ago

A long-running online nation simulation game has been taken temporarily offline following a security breach that compromised its central production server. The team estimates the downtime will last 2 to 5 days as they rebuild core infrastructure and audit the codebase for additional issues. According to an official disclosure posted on 30 January 2026 at […]

The post NationStates Suffers Databreach – Game site Temporarily Offline appeared first on Cyber Security News.

Abinaya

Malwarebytes in ChatGPT delivers AI-powered protection against scams

Help Net Security
2 months ago

Malwarebytes announced Malwarebytes in ChatGPT, a new way for individuals and small businesses to get fast, trusted security assistance directly within ChatGPT. Users can ask Malwarebytes to check whether something is a scam or spam, tapping into the company’s deep cybersecurity expertise and decades of threat intelligence. This initiative represents a step toward building user confidence in AI by pairing Malwarebytes’ expert threat intelligence with ChatGPT’s functionality. Scams aren’t a fringe issue – they’ve become … More →

The post Malwarebytes in ChatGPT delivers AI-powered protection against scams appeared first on Help Net Security.

Industry News

CVE-2026-1186 | ABC PRO EAP Legislator up to 2.25 File Extraction path traversal

VulDB Recent Entries
2 months ago
A vulnerability was found in ABC PRO EAP Legislator up to 2.25. It has been classified as critical. Impacted is an unknown function of the component File Extraction Handler. The manipulation leads to path traversal. This vulnerability is listed as CVE-2026-1186. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-24070 | Native Instruments Native Access com.native-instruments.NativeAccess.Helper2 untrusted search path

VulDB Recent Entries
2 months ago
A vulnerability classified as problematic was found in Native Instruments Native Access. Affected by this vulnerability is an unknown functionality of the component com.native-instruments.NativeAccess.Helper2. The manipulation results in untrusted search path. This vulnerability was named CVE-2026-24070. The attack needs to be approached locally. There is no available exploit.
vuldb.com

Pulsar RAT Attacking Windows Systems via Per-user Run Registry Key and Exfiltrates Sensitive Details

Cyber Security News
2 months ago

A new wave of attacks targeting Windows systems has emerged through a sophisticated remote access trojan known as Pulsar RAT. This malware establishes persistence using the per-user Run registry key, enabling automatic execution each time an infected user logs into their system. The threat represents a dangerous combination of stealth, persistence, and data theft capabilities […]

The post Pulsar RAT Attacking Windows Systems via Per-user Run Registry Key and Exfiltrates Sensitive Details appeared first on Cyber Security News.

Tushar Subhra Dutta

MCPJam Inspector远程代码执行漏洞(CVE-2026-23744)

先知技术社区
2 months ago
漏洞来源一个评分9.8的严重MCP漏洞漏洞描述MCPJam 检测器是 MCP 服务器的本地首发开发平台。1.4.2 及更早版本易受远程代码执行(RCE)漏洞的影响,该漏洞允许攻击者发送经过精心设计的 HTTP 请求,触发 MCP 服务器的安装,从而触发 RCE。由于MCPJam检测器默认监听0.0.0.0而不是127.0.0.1,攻击者可以通过简单的HTTP请求远程触发RCE。1.4.3 版本包含

Managed ad