CSO Online

SSHStalker botnet brute-forces its way onto 7,000 Linux machines

A newly discovered botnet is compromising poorly-protected Linux servers by brute-forcing weak SSH password login ...

Hackers resurrect the 90s IRC tricks with SSHStalker

Hackers resurrect 90s IRC tricks with SSHStalker, using old exploits to quietly compromise thousands of Linux servers ...

New Linux botnet SSHStalker uses old-school IRC for C2 comms

A newly documented Linux botnet named SSHStalker is using the IRC (Internet Relay Chat) communication protocol for command-and-control (C2) operations.

How to test OpenClaw without giving an autonomous agent shell access to your corporate laptop

OpenClaw jumped from 1,000 to 21,000 exposed deployments in a week. Here's how to evaluate it in Cloudflare's Moltworker ...

Malicious MoltBot skills used to push password-stealing malware

More than 230 malicious packages for the personal AI assistant OpenClaw (formerly known as Moltbot and ClawdBot) have been published in less than a week on the tool's official registry and on GitHub.

AI agents plus Terminal access equals a macOS security mess

AI agents that can run commands on a Mac are now being used to install malware, although the simplest way to avoid it is not ...

Keeper Commander Introduces SuperShell: A Full-Screen Terminal Interface for Vault Management

Keeper Security, the leading zero-trust and zero-knowledge Privileged Access Management (PAM) platform, today announces the availability of SuperShell, a full-screen Terminal User Interface (TUI) for ...

OpenClaw’s AI ‘skill’ extensions are a security nightmare

Security researchers found hundreds of malicious add-ons on ClawHub.
The Hacker News

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

A security audit found 341 malicious ClawHub skills abusing OpenClaw to spread Atomic Stealer and steal credentials on macOS ...

I wanted to self-host without paying, and this user-friendly server OS delivered

I wanted to self-host without paying, and this user-friendly server OS delivered ...
Infosecurity Magazine

New Technical Markers Reveal Expanding ShadowSyndicate Cybercriminal Infrastructure

A sprawling malicious infrastructure linked to the ShadowSyndicate cybercrime cluster has been expanded following the discovery of new technical markers that connect dozens of servers to the same ...