This New Tool Can Steal Your Passwords And Info – Even With 2FA Enabled

Storm is a Windows infostealer that steals encrypted browser data, decrypts it off-device, and uses session cookies to bypass ...

At least a dozen crypto entities attacked since Drift Protocol hack

A wave of crypto hacks and attacks followed the Drift exploit, hitting at least 12 entities, including Rhea Finance and Grinex, this week.
The Hacker News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

Microsoft Weekly: Start menu in rework again and Recall is on fire

Catch up with this week's Microsoft stories in the latest recap. Patch Tuesday updates, bugs, Start menu reworks, Recall ...