Tag: tool

Interlock Ransomware Exploits Zero-Day in Gaming Anti-Cheat Driver to Disable EDR, AV

Feb 4, 2026 1:13 PM

Tags: cyber, defense, edr, endpoint, exploit, flaw, ransomware, tool, zero-day

Interlock ransomware operators have been observed using a new process”‘killing tool that abuses a zero”‘day flaw in a gaming anti”‘cheat kernel driver to try to shut down endpoint defenses (EDR/AV). The activity was documented during an intrusion against a North Americabased education organization and shows Interlock continuing to evolve its internal tooling rather than relying…
The First 90 Seconds: How Early Decisions Shape Incident Response Investigations

Feb 4, 2026 1:13 PM

Tags: control, detection, incident response, intelligence, tool

Many incident response failures do not come from a lack of tools, intelligence, or technical skills. They come from what happens immediately after detection, when pressure is high, and information is incomplete.I have seen IR teams recover from sophisticated intrusions with limited telemetry. I have also seen teams lose control of investigations they should have…
Clouds rush to deliver OpenClaw-as-a-service offerings

Feb 4, 2026 7:13 AM

Tags: ai, cloud, cybersecurity, gartner, risk, service, tool

As analyst house Gartner declares AI tool ‘comes with unacceptable cybersecurity risk’ and urges admins to snuff it out First seen on theregister.com Jump to article: www.theregister.com/2026/02/04/cloud_hosted_openclaw/
From Clawdbot to Moltbot to OpenClaw: Security Experts Detail Critical Vulnerabilities and 6 Immediate Hardening Steps for the Viral AI Agent

Feb 4, 2026 6:13 AM

Tags: access, ai, api, attack, authentication, computer, container, control, crypto, cve, data, data-breach, detection, docker, email, flaw, github, group, Hardware, injection, Internet, leak, login, malicious, malware, open-source, password, privacy, remote-code-execution, risk, scam, skills, software, threat, tool, unauthorized, vulnerability

Moltbot, the viral AI agent, offers immense power but is riddled with critical vulnerabilities, including remote code execution (RCE), exposed control interfaces, and malicious extensions. Read on to understand the vulnerabilities associated with Moltbot and the immediate security practices users must prioritize to mitigate this enormous agentic AI security risk. Key takeaways Moltbot takes an…
Full Spectrum AI Security: FireTail’s Platform Update for the AI-Enabled Workforce FireTail Blog

Feb 4, 2026 1:13 AM

Tags: access, ai, api, browser, chatgpt, chrome, ciso, cloud, control, corporate, data, email, governance, grc, group, jobs, LLM, monitoring, risk, service, skills, technology, tool, unauthorized, update, vulnerability

Feb 03, 2026 – Jeremy Snyder – The rise of generative AI has changed how businesses operate. In almost every company, leaders are looking for ways to use AI to work faster and smarter. However, this shift has created a major challenge for security teams. Most of the AI activity inside an organization is currently…
Fake Party Invites Lure Victims Into Installing Malicious Remote Access Tools

Feb 3, 2026 11:14 PM

Tags: access, attack, cyber, email, malicious, social-engineering, tool, windows

A sophisticated social engineering campaign targeting Windows users across the UK, using fake event invitations to silently install ScreenConnect a legitimate remote access tool that attackers have weaponized to gain complete system control. The attack chain begins with deceptive simplicity: victims receive emails that look like personal invitations from friends or colleagues. These messages are…
[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Feb 3, 2026 5:14 PM

Tags: automation, soc, tool

Most security teams today are buried under tools. Too many dashboards. Too much noise. Not enough real progress.Every vendor promises “complete coverage” or “AI-powered automation,” but inside most SOCs, teams are still overwhelmed, stretched thin, and unsure which tools are truly pulling their weight. The result? Bloated stacks, missed signals, and mounting pressure to do…
French prosecutors raid X offices, summon Musk over Grok deepfakes

Feb 3, 2026 2:13 PM

Tags: ai, deep-fake, office, tool

French prosecutors have raided X’s offices in Paris on Tuesday as part of a criminal investigation into the platform’s Grok AI tool, widely used to generate sexually explicit images. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/french-prosecutors-raid-x-offices-over-grok-sexual-deepfakes/
Analysis of the Attack Surface in the Agent SKILL Architecture: Case Studies and Ecosystem Research

Feb 3, 2026 1:13 PM

Tags: attack, cyber, LLM, network, tool

Background As LLMs and intelligent agents expand from dialogue to task execution, the encapsulation, reuse and orchestration of LLM capabilities have become key issues. As a capability abstraction mechanism, SKILL encapsulates reasoning logic, tool calls and execution processes into reusable skill units, enabling the model to achieve stable, consistent and manageable operations when performing complex…The…
Notepad++ infrastructure hijacked by Chinese APT in sophisticated supply chain attack

Feb 3, 2026 1:13 PM

Tags: access, ai, apt, attack, backdoor, china, control, cybersecurity, detection, edr, email, espionage, exploit, framework, government, group, incident response, infrastructure, malicious, malware, microsoft, network, software, supply-chain, tool, update

Rapid7 identifies custom malware: Cybersecurity firm Rapid7 also published a detailed technical analysis corroborating Ho’s disclosure and identifying the attack as part of a broader campaign deploying previously undocumented malware. Rapid7’s investigation uncovered a custom backdoor the firm dubbed “Chrysalis,” alongside Cobalt Strike and Metasploit frameworks.”Forensic analysis conducted by the MDR team suggests that the…
Shai-Hulud & Co.: The software supply chain as Achilles’ heel

Feb 3, 2026 9:13 AM

Tags: access, ai, application-security, attack, backdoor, ciso, cloud, credentials, cyber, github, Hardware, identity, infrastructure, kritis, kubernetes, malicious, network, nis-2, programming, risk, rust, sbom, software, strategy, supply-chain, threat, tool, vulnerability, worm

The polyglot supply chain attack: The most frightening prospect, however, is the convergence of these threats in a polyglot supply chain attack. Currently, security teams operate in isolation. AppSec monitors the code, CloudSec monitors the cloud, NetworkSec monitors the perimeter. A polyglot attack is designed to seamlessly break through these silos.This happens as follows: A…
APT28 Leverages CVE-2026-21509 in Operation Neusploit

Feb 3, 2026 8:13 AM

Tags: access, api, attack, backdoor, cloud, communications, control, cve, data, detection, email, encryption, endpoint, exploit, github, group, infection, malicious, malware, microsoft, office, open-source, phishing, russia, service, startup, threat, tool, ukraine, update, vulnerability, windows

IntroductionIn January 2026, Zscaler ThreatLabz identified a new campaign in-the-wild, tracked as Operation Neusploit, targeting countries in the Central and Eastern European region. In this campaign, the threat actor leveraged specially crafted Microsoft RTF files to exploit CVE-2026-21509 and deliver malicious backdoors in a multi-stage infection chain. Due to significant overlaps in tools, techniques, and procedures (TTPs)…
New phishing attack leverages PDFs and Dropbox

Feb 3, 2026 5:13 AM

Tags: access, attack, authentication, awareness, business, cloud, control, detection, email, hacker, infrastructure, login, mail, mfa, phishing, service, threat, tool, training, zero-trust

Masquerading as a safe document format: But after so many warnings about this over time, why are people still so trusting of PDFs and Dropbox?”Because, historically, they’ve actually been trained to be,” said Avakian. PDFs are routinely used in the business world and have been positioned as a safe, read-only document format for invoices, contracts,…
Nitrogen Ransomware: ESXi malware has a bug!

Feb 3, 2026 12:13 AM

Tags: backup, data-breach, malware, ransom, ransomware, threat, tool

Nitrogen ransomware was derived from the previously leaked Conti 2 builder code, and is similar to Nitrogen ransomware, but a coding mistake in the ESXi malware causes it to encrypt all the files with the wrong public key, irrevocably corrupting them. This means that even the threat actor is incapable of decrypting them, and that…
Why Your WAF Missed It: The Danger of Double-Encoding and Evasion Techniques in Healthcare Security

Feb 3, 2026 12:13 AM

Tags: access, ai, api, attack, data, data-breach, detection, exploit, governance, hacker, healthcare, intelligence, malicious, risk, technology, threat, tool, waf

The “Good Enough” Trap If you ask most organizations how they protect their APIs, they point to their WAF (Web Application Firewall). They have the OWASP Top 10 rules enabled. The dashboard is green. They feel safe. But attackers know exactly how your WAF works, and, more importantly, how to trick it. We recently worked…
China-based espionage group compromised Notepad++ for six months

Feb 2, 2026 10:14 PM

Tags: apt, china, espionage, group, tool

The Chinese APT group Lotus Blossom intruded the tool’s internal systems to snoop on a limited set of users’ activities, according to researchers. First seen on cyberscoop.com Jump to article: cyberscoop.com/china-espionage-group-lotus-blossom-attacks-notepad/
Malicious MoltBot skills used to push password-stealing malware

Feb 2, 2026 9:14 PM

Tags: ai, malicious, malware, password, skills, tool

More than 230 malicious packages for the personal AI assistant OpenClaw (formerly known as Moltbot and ClawdBot) have been published in less than a week on the tool’s official registry and on GitHub. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/malicious-moltbot-skills-used-to-push-password-stealing-malware/
What’s New in Tenable Cloud Security: Multi-cloud Risk Analysis, Attack Surface Assessments, Improved IAM Security and More

Feb 2, 2026 8:14 PM

Tags: ai, attack, cloud, compliance, data, data-breach, endpoint, gartner, google, governance, iam, identity, infrastructure, Internet, least-privilege, microsoft, mitigation, network, radius, risk, risk-analysis, service, supply-chain, switch, tool, training, vulnerability

Tenable Cloud Security continues to expand the technical depth of our Tenable One exposure management platform. Our latest enhancements include unified multi-cloud exploration, high-fidelity network validation, and expanded entitlement visibility across infrastructure and identity providers. Key takeaways Graph-based multi-cloud exploration: We’ve leveraged our unified data model to provide deep visibility across all cloud environments. You…
Exabeam Channel Chief On Driving ‘Highest-Level’ Profitability For Partners, New AI Tool

Feb 2, 2026 7:13 PM

Tags: ai, service, siem, tool

Exabeam is doubling down on partner profitability in 2026 as the SIEM vendor seeks to accelerate its growth with the help of solution and service provider partners, Exabeam Global Channel Chief Craig Patterson tells CRN. First seen on crn.com Jump to article: www.crn.com/news/security/2026/exabeam-channel-chief-on-driving-highest-level-profitability-for-partners-new-ai-tool
CultureAI Launches Global Partner Program

Feb 2, 2026 7:13 PM

Tags: ai, control, msp, mssp, tool

CultureAI has announced the launch of its global CultureAI Partner Program, designed to empower resellers, VARs, MSPs and MSSPs to help customers adopt AI with confidence, making critical AI usage controls accessible to all. As AI usage accelerates across enterprises, often through unsanctioned and embedded tools, organisations are facing a growing gap between AI adoption…
Securing the Mid-Market Across the Complete Threat Lifecycle

Feb 2, 2026 3:14 PM

Tags: attack, cyberattack, cybersecurity, threat, tool

For mid-market organizations, cybersecurity is a constant balancing act. Proactive, preventative security measures are essential to protect an expanding attack surface. Combined with effective protection that blocks threats, they play a critical role in stopping cyberattacks before damage is done.The challenge is that many security tools add complexity and cost that most mid-market businesses First…
Bitbucket Alternatives in 2026

Feb 2, 2026 2:13 PM

Tags: tool

Developers from around the world have known Bitbucket for years as one of the best Git repositories, especially for those working within the Atlassian ecosystem. It was released in 2008, but in 2026, it remains a crucial tool for many companies and professionals. Yet, it doesn’t mean it’s the only fish in the sea. In…
Why non-human identities are your biggest security blind spot in 2026

Feb 2, 2026 1:13 PM

Tags: access, api, breach, cloud, control, credentials, data-breach, github, google, governance, identity, least-privilege, password, service, threat, tool

The three blind spots I keep finding: After years working in cloud security and identity management, certain patterns show up everywhere I look. Three problems in particular appear in nearly every environment I assess. Secrets where they should never be. I still find API keys hardcoded in source files. Still. In 2026. Last year, GitGuardian…
When responsible disclosure becomes unpaid labor

Feb 2, 2026 9:13 AM

Tags: ai, bug-bounty, ciso, cloud, compliance, control, credentials, cve, cvss, cybersecurity, data, email, exploit, finance, flaw, governance, healthcare, incident response, infrastructure, jobs, open-source, ransom, risk, security-incident, service, software, threat, tool, update, vulnerability, warfare

supposed to function and how it increasingly does in practice. Enter the gray zone of ethical disclosure: The result is a growing gray zone between ethical research and adversarial pressure. Based on years of reporting on disclosure disputes, that gray zone tends to emerge through a small set of recurring failure modes.Silent treatment and severity…
Open-source AI pentesting tools are getting uncomfortably good

Feb 2, 2026 8:14 AM

Tags: ai, open-source, penetration-testing, tool

AI has come a long way in the pentesting world. We are now seeing open-source tools that can genuinely mimic how a human tester works, not just fire off scans. I dug into … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/02/open-source-ai-pentesting-tools-test/
IoT Penetration Testing: Definition, Process, Tools, and Benefits

Feb 1, 2026 8:13 AM

Tags: attack, breach, cloud, exploit, firmware, iot, mobile, penetration-testing, risk, service, tool

IoT penetration testing is a security assessment of the complete IoT ecosystem, from backend systems and cloud services to mobile devices and hardware. It involves a multi-stage simulated attack on IoT devices and their supporting system to identify security risks before attackers can exploit them. Unpatched firmware is responsible for 60% of IoT security breaches,……
Top 10 Best DNS Filtering Solutions 2026

Feb 1, 2026 5:13 AM

Tags: access, ai, attack, control, cyber, dns, phishing, ransomware, service, tool

In 2026, the perimeter is gone. Your users are everywhere, and the >>castle and moat<< security model is obsolete. The most effective way to secure a hybrid workforce is through DNS filtering and Secure Access Service Edge (SASE). These tools act as the new control plane, stopping ransomware command-and-control (C2) callbacks and AI-driven phishing attacks…
Blockchain Penetration Testing: Definition, Process, and Tools

Feb 1, 2026 12:13 AM

Tags: blockchain, cyberattack, exploit, framework, network, penetration-testing, service, tool, vulnerability

Blockchain Penetration Testing simulates real-world cyberattacks on blockchain systems to identify vulnerabilities before attackers can exploit them. On September 14, 2021, the Solana blockchain network went offline for 17 hours during the Grape Protocol IDO (Initial DEX Offering) due to a Distributed Denial-of-Service (DDoS) attack. In distributed blockchain applications, penetration testing frameworks have demonstrated throughput……
AI-powered penetration testing: Definition, Tools and Process

Feb 1, 2026 12:13 AM

Tags: ai, cyberattack, intelligence, penetration-testing, tool, vulnerability

AI-powered penetration testing is an advanced approach to security testing that uses artificial intelligence, machine learning, and autonomous agents to simulate real-world cyberattacks, identify vulnerabilities, and assess exploitability faster and more intelligently than traditional manual testing. According to Mariia Kozlovska et al. in their research “Artificial intelligence in penetration testing: leveraging AI for advanced vulnerability……
NDSS 2025 PropertyGPT

Jan 31, 2026 9:15 PM

Tags: blockchain, bug-bounty, conference, crypto, guide, Internet, LLM, network, oracle, strategy, tool, vulnerability, zero-day

Session 11A: Blockchain Security 2 Authors, Creators & Presenters: Ye Liu (Singapore Management University), Yue Xue (MetaTrust Labs), Daoyuan Wu (The Hong Kong University of Science and Technology), Yuqiang Sun (Nanyang Technological University), Yi Li (Nanyang Technological University), Miaolei Shi (MetaTrust Labs), Yang Liu (Nanyang Technological University) PAPER PropertyGPT: LLM-driven Formal Verification of Smart Contracts…