Dark Reading

Microsoft Fixes Exploited Zero Day in Light Patch Tuesday

Attackers are already exploiting one of the 57 vulnerabilities for which Microsoft issued a patch this week, and proof-of-concept (PoC) exploits are publicly available for two other vulnerabilities.

Windows 11 Notepad flaw let files execute silently via Markdown links

Microsoft has fixed a "remote code execution" vulnerability in Windows 11 Notepad that allowed attackers to execute local or ...
The Hacker News

TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure

Worm-driven TeamPCP campaign exploits Docker, Kubernetes, Redis, Ray, and React2Shell to build proxy infrastructure for data theft and ransomware.

The Bogus Moltbook ‘Drug’ Episode Highlights Another Critical Vulnerability in AI

Here’s what really happened when posters on the Reddit-for-bots site seemed to develop a taste for hallucinogens—and its serious implications for your own LLM protocols.
PCMag on MSN

Bloat Risk? Microsoft's Notepad Upgrade Also Introduced a Vulnerability

The flaw exploits Notepad’s recently added support for Markdown, a formatting language used on websites and in files, to run malicious code on a Windows PC.