WhatsApp fixes ‘zero-click’ bug used to hack Apple users with spyware
A spyware vendor was behind a recent campaign that abused a vulnerability in WhatsApp to deliver an exploit capable of hacking into iPhones and Macs.
Security
TransUnion says hackers stole 4.4 million customers’ personal information
The credit reporting giant confirmed unauthorized access to a third-party application storing the personal information of its customers.
FBI says China’s Salt Typhoon hacked at least 200 US companies
The FBI’s cyber chief says the long-running China-backed hacking campaign is “ongoing” and affecting companies all over the world.
US sanctions fraud network used by North Korean ‘remote IT workers’ to seek jobs and steal money
Treasury officials say the North Korea government used the fraud network to generate money for the regime’s nuclear weapons program.
‘Vibe-hacking’ is now a top AI threat
“Agentic AI systems are being weaponized.” That’s one of the first lines of Anthropic’s new Threat Intelligence report, out today, which details the wide range of cases in which Claude – and likely many other leading AI agents and chatbots – are being abused. First up: “Vibe-hacking.” One sophisticated cybercrime ring that Anthropic says it […]
DOGE uploaded live copy of Social Security database to ‘vulnerable’ cloud server, says whistleblower
The Social Security Administration’s chief data officer has publicly blown the whistle, alleging DOGE put hundreds of millions of Social Security records at risk of compromise.
Security researcher maps hundreds of TeslaMate servers spilling Tesla vehicle data
A security researcher mapped TeslaMate servers that are publicly exposed to the internet, including sensitive Tesla vehicle data, such as their locations.
A new security flaw in TheTruthSpy phone spyware is putting victims at risk
Exclusive: Hackers can take over the accounts of TheTruthSpy spyware customers, putting their victims’ private phone data at risk thanks to a new security flaw.
Developer gets prison time for sabotaging former employer’s network with a ‘kill switch’
The ex-developer was convicted of planting malicious code designed to crash its servers in the event that he was fired.
Hackers who exposed North Korean government hacker explain why they did it
The two self-described hacktivists said they had access to the North Korean spy’s computer for around four months before deciding what they had found should be made public.