TeamPCP deploys Iran-targeted wiper in Kubernetes attacks

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran.
Hackaday

Linux Fu: UPNP A Port Mapping Odyssey

If you’ve ever run a game server or used BitTorrent, you probably know that life is easier if your router supports UPnP ...

International joint action disrupts world’s largest DDoS botnets

Authorities from the United States, Germany, and Canada have taken down Command and Control (C2) infrastructure used by the ...
IP Paraguay

The Paraguayan President discusses hemispheric security and cooperation with the U.S. Southern Command Chief

Asunción, Agencia IP.-The President of the Republic, Santiago Peña, reported on his meeting with General Francis L. Donovan, Commander of the United States Southern Command. «During our meeting, we ...
GitHub

Command Injection via Unescaped Argument Interpolation (CWE-78)

Most tool handlers in server.py interpolate AI-supplied parameters (target, additional_args, url, username, etc.) directly into shell command strings executed via subprocess with shell=True, without ...
The Hacker News

Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries

Google on Wednesday disclosed that it worked with industry partners to disrupt the infrastructure of a suspected China-nexus cyber espionage group tracked as UNC2814 that breached at least 53 ...
The Hacker News

CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed vulnerability in FileZen to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of ...