The AI security nightmare is here and it looks suspiciously like lobster

A hacker tricked a popular AI coding tool into installing OpenClaw — the viral, open-source AI agent OpenClaw that “actually ...
IEEE

Dynamic Cybersecurity Defense: A Real-Time Approach with Zeek and Metasploit

Abstract: This research presents a real-time cybersecurity defense system integrating Zeek, Metasploit, and a Security Information and Event Management (SIEM) platform to enhance threat detection, ...
SecurityWeek

New Paper and Tool Help Security Teams Move Beyond Blind Reliance on CISA’s KEV Catalog

The cybersecurity of business is not the function of CISA. CISA’s remit is to raise the security of FECB agencies, and KEV is ...
devdiscourse

Teaching AI to hack may be the only way to secure the internet

Defensive cybersecurity models that relied on limited human expertise are collapsing as AI agents take over tasks once constrained by skill and labor. A new research paper finds that the ...
The Hacker News

Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088

Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to ...
GitHub

Metasploit Exploit CVE Coverage

This repository provides a daily, automatically updated JSON dataset detailing which exploits within the Metasploit Framework are associated with specific Common Vulnerabilities and Exposures (CVE) ...
Bleeping Computer

Hackers exploit critical telnetd auth bypass flaw to get root

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present in the GNU InetUtils telnetd server for 11 years. The security issue is ...