Author: Declan Murphy

Anthropic solely launched its newest giant language mannequin, Claude Opus 4.6, on Thursday, nevertheless it has already been utilizing it behind the scenes to determine zero-day vulnerabilities in open-source software program. Within the trial, it put Claude inside a digital machine with entry to the newest variations of open supply tasks, and offered it with a spread of ordinary utilities and vulnerability evaluation instruments, however no directions on how one can use them nor how particularly to determine vulnerabilities. Regardless of this lack of steerage, Opus 4.6 managed to determine a 500 high-severity vulnerabilities. Anthropic employees are validating the findings…

On 6 February 2026, a routine promotional payout went incorrect at South Korean cryptocurrency trade Bithumb, when a system configuration error credited customers with massive Bitcoin balances as a substitute of the small rewards that had been meant. The glitch occurred throughout a promotional occasion the place winners had been imagined to obtain a small reward value about 2,000 South Korean gained, roughly $1.40. As a substitute, some accounts had been credited with at the very least 2,000 bitcoins every, leading to about 620,000 BTC incorrectly assigned throughout 695 buyer accounts, with a complete worth within the tens of billions…

Germany’s Federal Workplace for the Safety of the Structure (aka Bundesamt für Verfassungsschutz or BfV) and Federal Workplace for Info Safety (BSI) have issued a joint advisory warning of a malicious cyber marketing campaign undertaken by a probable state-sponsored menace actor that includes finishing up phishing assaults over the Sign messaging app. “The main focus is on high-ranking targets in politics, the army, and diplomacy, in addition to investigative journalists in Germany and Europe,” the companies stated. “Unauthorized entry to messenger accounts not solely permits entry to confidential non-public communications but additionally probably compromises total networks.” A noteworthy facet of…

A complicated new phishing marketing campaign is concentrating on Apple Pay customers, leveraging high-quality e mail design and social engineering to bypass safety measures. Not like typical scams that depend on poorly spelled emails and suspicious hyperlinks, this marketing campaign makes use of a “hybrid” method involving each e mail and telephone fraud, usually referred to as “vishing”, to steal Apple IDs and fee information. Phishing Assault The assault begins with an e mail that seems genuine. It options official Apple branding, right formatting, and knowledgeable structure. The topic line often triggers instant nervousness, signaling a high-value buy, comparable to…

Six extra vulnerabilities have been found within the n8n workflow platform used for constructing LLM-powered brokers to attach enterprise processes. 4 of the six are rated as essential, carrying CVSS severity scores of 9.4. “These vulnerabilities span a number of assault courses, from distant code execution and command injection to arbitrary file entry and cross-site scripting, all focusing on a platform that’s incessantly deployed with entry to secrets and techniques, credentials, inner APIs, and business-critical logic,” famous Amit Genkin, a safety researchers at Israel-based cloud safety supplier Upwind, who blogged concerning the vulnerabilities this week. Johannes Ullrich, dean of analysis…

Vulnerabilities affecting n8n, OpenSSL and GNU Inetutils are among the many flaws being observed by menace actors and safety researchers alike. Cyble Vulnerability Intelligence researchers tracked 1,147 vulnerabilities in the final week, and greater than 128 of the disclosed vulnerabilities have already got a publicly out there Proof-of-Idea (PoC), considerably rising the probability of real-world assaults.  A complete of 108 vulnerabilities have been rated as crucial underneath the CVSS v3.1 scoring system, whereas 54 obtained a crucial severity score based mostly on the newer CVSS v4.0 scoring system.  Under are a few of the IT vulnerabilities flagged by Cyble menace intelligence researchers for prioritization by safety groups in current reviews to purchasers.  The Week’s High IT Vulnerabilities  Cyble’s community of honeypot sensors detected assault makes an…

Flickr says a third-party e mail vendor flaw could have uncovered person names, emails, IP knowledge, and exercise logs, although passwords and funds stayed safe. A safety flaw at a third-party e mail service supplier has doubtlessly uncovered the private particulars of Flickr members. On February 5, 2026, the favored photo-sharing platform was alerted to a vulnerability inside a system managed by one in all its exterior distributors. This loophole could have allowed unauthorised people to view particular member knowledge. Flickr, at present operated by SmugMug, acted rapidly to deal with the problem, disabling entry to the compromised system inside…

Ravie LakshmananFeb 06, 2026Malware / IoT Safety Cybersecurity researchers have taken the wraps off a gateway-monitoring and adversary-in-the-middle (AitM) framework dubbed DKnife that is operated by China-nexus menace actors since no less than 2019. The framework includes seven Linux-based implants which might be designed to carry out deep packet inspection, manipulate visitors, and ship malware by way of routers and edge gadgets. Its major targets appear to be Chinese language-speaking customers, an evaluation primarily based on the presence of credential harvesting phishing pages for Chinese language e mail companies, exfiltration modules for common Chinese language cellular purposes like WeChat, and…

A worrying shift within the ways of “Clear Tribe,” a infamous risk group also referred to as APT36. Traditionally centered on Indian authorities, protection, and academic sectors, the group has now expanded its scope to focus on India’s rising startup ecosystem. This new marketing campaign makes use of refined lures themed round actual startup founders to contaminate victims with the “Crimson RAT” malware. Energetic since 2013 and broadly linked to Pakistan-based actors, Clear Tribe normally focuses on espionage towards navy and diplomatic targets. The hackers are particularly focusing on startups concerned in OSINT (Open Supply Intelligence) and cybersecurity. Nonetheless, TRU’s…

The robustness of robotic techniques depends on the exact annotation of spatial information. Robots constructed on spatial intelligence are utilized in key purposes, together with aerial supply techniques, autonomous autos, search and rescue drones, surgical robots, cell robots, and industrial robots that work alongside folks. The necessity for dependable information annotation is now larger than ever, enabling robots to function outdoors managed settings. For information annotation suppliers, this shift marks a pivotal second. There may be an unprecedented have to annotate visible information for spatial reasoning in machines. By combining automated pipelines for 3D information era with professional human-in-the-loop annotation,…