Thu, 02 Jul 2026 14:43:13 +0530AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
9.8/10 · Must read/watchThe Hacker Newsvulnmalwareai
Summary
Security firm Sysdig says it has found what it believes is the first ransomware attack run from start to finish by an AI agent. Its Threat Research Team calls the operator JADEPUFFER and says a large language model handled the whole job: breaking in,
Thu, 02 Jul 2026 13:30:49 +0530FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations
9.8/10 · Must read/watchThe Hacker Newsmalwareaiidentity
Summary
The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions. "An operator tied to FortiBleed's infrastructu
Thu, 02 Jul 2026 12:54:23 +0530New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos
9.8/10 · Must read/watchThe Hacker Newsvulnmalwaresupply-chainai
Summary
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories on GitHub that claim to exploit hot new CVEs. Run one, and
Thu, 02 Jul 2026 11:16:45 +0530SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
9.8/10 · Must read/watchThe Hacker Newsvulnpolicy
Summary
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, trac
Thu, Jul 02 · 12:00 AM CDTKimi K2.7 Code is generally available in GitHub Copilot
8.9/10 · Worth your timeHacker Newssupply-chainai
Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 6 hours ago.