The Hacker News

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

New hacking cluster exploits web servers and Mimikatz to infiltrate Asian infrastructure for long-term espionage in aviation, ...
XDA Developers on MSN

Amazon's own Kindle ads turned out to be the security hole that lets you jailbreak it

The "Uno Reverse" moment.
WeLiveSecurity

Sednit reloaded: Back in the trenches

ESET researchers document how the Sednit APT group has reemerged with a modern toolkit centered on two paired implants – BeardShell and Covenant.
XDA Developers on MSN

I found a Proxmox tool that turns a long setup into simple menus, and I'm annoyed I didn't know about it sooner

PECU turns tedious setup work into simple menus, and it quickly became a tool I wish hadn’t taken me so long to find.
CSO Online

Devs looking for OpenClaw get served a GhostClaw RAT

GhostClaw poses as an OpenClaw installer package, stealing system credentials and sensitive data before deploying a persistent RAT.

APT28 hackers deploy customized variant of Covenant open-source tool

The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations.