News — Pixelift

Daily news from the world of AI, image editing and new model releases.

Security

112 articles

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

Russian cybercriminals are utilizing infected LNK files to distribute the advanced CTRL Toolkit, which enables the hijacking of Remote...

SecurityMar 30

Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign

SecurityMar 28

Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack

SecurityMar 28

Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug

SecurityMar 28

TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

SecurityMar 28• The Hacker News

CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation

The critical vulnerability CVE-2025-53521, which allows for the complete takeover of user sessions, has just been added to the Known...

SecurityMar 27

Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits

SecurityMar 27

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

SecurityMar 27

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

SecurityMar 26

China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks

SecurityMar 26• The Hacker News

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

As many as 90% of successful ransomware attacks rely on so-called lateral movement, where hackers move freely within a network after...

SecurityMar 26

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

SecurityMar 25

LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace

SecurityMar 25

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

SecurityMar 25

The Kill Chain Is Obsolete When Your AI Agent Is the Threat

SecurityMar 24• The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise

Nearly 1,500 stars on GitHub did not protect the popular LiteLLM library from a supply chain attack affecting versions 1.82.7 through...

SecurityMar 24

⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More

Nearly 90% of organizations plan to implement Zero Trust Network Access (ZTNA) architecture within the next two years to finally phase out...

SecurityMar 23

We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them

SecurityMar 23

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware

SecurityMar 23

Security

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign

Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack

Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug

TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation

Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

The Kill Chain Is Obsolete When Your AI Agent Is the Threat

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise

Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR

5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

‘CanisterWorm’ Springs Wiper Attack Targeting Iran

⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More

We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper