Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...

New macOS stealer campaign uses Script Editor in ClickFix attack

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix ...
The Hacker News

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential ...
MacTech

ClickFix attack uses Script Editor instead of Terminal on macOS

Jamf Threat Labs has discovered a ClickFix-style macOS attack that abuses the applescript:// URL scheme to launch Script ...
SecurityWeek

React2Shell Exploited in Large-Scale Credential Harvesting Campaign

The UAT-10608 hacking group is using automated scanning and scripts to exploit React2Shell in a large-scale credential ...
New York Post

Illegal migrant accused of executing Loyola student Sheridan Gorman was cut loose twice under Biden: DHS

An illegal Venezuelan migrant accused of executing a Loyola University Chicago freshman from New York entered the US under the Biden administration, and was released under Chicago’s sanctuary city ...
CSO Online

New ClickFix variant bypasses Apple safeguards with one‑click script execution

Jamf finds a ClickFix variant that swaps copy-paste Terminal lures for Script Editor execution, tightening delivery of Atomic ...
The Guardian

Israel’s death penalty bill for Palestinian prisoners moves to final vote

Legislation initiated by far-right Otzma Yehudit party drew mounting criticism from opponents and rights groups as it moved through the Knesset Middle East crisis – live updates Israel’s parliament ...
CNN

Tehran sends a message with execution of young wrestler and others, say experts

When a 19-year-old wrestler and two other men were hanged in the holy city of Qom on Thursday, Iran’s theocratic regime was sending a message to both dissenters inside the country and opponents abroad ...