SimpleHelp Flaw Exploited to Deploy Malware Targeting Windows, macOS, and Linux

A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
SecurityWeek

Critical SimpleHelp Vulnerability Exploited for Malware Delivery

A threat actor has been exploiting CVE-2026-48558, a critical SimpleHelp vulnerability, to drop TaskWeaver and Djinn Stealer ...

Microsoft's Windows Secure Boot certificates just expired – here's what you need to do

Asus has confirmed that all consumer PCs will receive the update automatically through Windows Update. Users can also check ...
SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
CNET

Windows 10 Users Can Get Free Security Updates Until 2027 — Here's How

He's written for CNET, PCMag, Mashable and SlashGear as a freelance writer, and worked as a Senior Editor at Android ...

WhatsApp Web Users Beware! CERT-In Warns Of Malware Attacks; Don’t Open These Files

Imagine you receive what looks like a video or a business document on WhatsApp Web. The attachment appears genuine, but clicking it silently installs malware on your computer ...

Using WhatsApp Web Or Desktop? Govt Warns Of Large-Scale Malware Campaign

In an advisory, the Indian Computer Emergency Response Team (Cert-In) said the campaign is targeting users through malicious file attachments sent via WhatsApp.

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

CISA sets urgent deadline to fix Cisco flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

Windows 10's free security updates now extend to October 2027

Microsoft's support page explaining how to continue receiving security updates on Windows 10 now states that the company will continue providing patches through October 12, 2027 ...

Windows 10 just very quietly got another year of free support - but why?

If you're still running Windows 10, Microsoft has some good news: it has extended the free Extended Security Update program ...