's Avatar

@drewgordon

8
Followers 28
Following 290
Posts 15.11.2024
Joined
Posts Following

Latest posts by @drewgordon

Preview
Hackers abuse .arpa DNS and ipv6 to evade phishing defenses Threat actors are abusing the special-use ".arpa" domain and IPv6 reverse DNS in phishing campaigns that more easily evade domain reputation checks and email security gateways.

www.bleepingcomputer.com/news/securit...

08.03.2026 15:23 👍 0 🔁 0 💬 0 📌 0
Preview
From the singularity community on Reddit: Reuters: For several days in a row, Iran has been deliberately destroying Amazon data centers Explore this post and more from the singularity community

www.reddit.com/r/singularit...

05.03.2026 05:17 👍 0 🔁 0 💬 0 📌 0
Preview
Cisco warns of max severity Secure FMC flaws giving root access Cisco has released security updates to patch two maximum-severity vulnerabilities in its Secure Firewall Management Center (FMC) software.

www.bleepingcomputer.com/news/securit...

05.03.2026 03:18 👍 0 🔁 0 💬 0 📌 0
Preview
Open-Source CyberStrikeAI Deployed in AI-Driven FortiGate Attacks Across 55 Countries AI-powered CyberStrikeAI linked to 600 FortiGate breaches in 55 countries, with 21 IPs tied to China-based infrastructure.

thehackernews.com/2026/03/open...

04.03.2026 02:40 👍 0 🔁 0 💬 0 📌 0
Preview
RESURGE Malware Exploits Ivanti Connect Secure CVE-2025-0282 Vulnerability RESURGE malware exploits Ivanti CVE-2025-0282 to achieve unauthenticated RCE. Picus analyzes its TTPs and outlines how defenders can detect and prevent RESURGE attacks.

www.picussecurity.com/resource/res...

01.03.2026 13:32 👍 0 🔁 0 💬 0 📌 0

Scientists Discovered WiFi Can Spy on You—Even When You’re Not Online - Popular Mechanics

28.02.2026 22:09 👍 0 🔁 0 💬 0 📌 0
Preview
Claude didn't just plan an attack on Mexico's government. It executed one for a month — across four domains your security stack can't see. A hacker jailbroke Claude to steal 150GB of Mexican government data in a month-long campaign. CrowdStrike's latest threat report shows it's part of a wider pattern — and maps four domains most security stacks are blind to.

venturebeat.com/security/cla...

28.02.2026 20:31 👍 0 🔁 0 💬 0 📌 0
Preview
From the AITechTips community on Reddit: New AI Data Leaks-More Than 1 Billion IDs And Photos Exposed Posted by EchoOfOppenheimer - 2 votes and 0 comments

www.reddit.com/r/AITechTips...

27.02.2026 04:39 👍 0 🔁 0 💬 0 📌 0
Preview
This tiny M.2 module turns your everyday laptop into a penetration testing tool Wavelet Lab’s xSDR is a tiny M.2 2230 A+E-key software-defined radio (SDR) module built to plug straight into laptops, tablets, embedded PCs, and other compact systems. Just drop this tiny card into a...

www.notebookcheck.net/This-tiny-M-...

22.02.2026 23:09 👍 1 🔁 0 💬 0 📌 0
Preview
You can log into 28 vintage computer systems in your browser for free, thanks to the Interim Computer Museum — Experience legendary OSes, architectures, programming languages, and games I enjoyed playing a game of Chess on the 'MissPiggy' PDP-11/70 running UNIX v7.

www.tomshardware.com/video-games/...

22.02.2026 17:59 👍 0 🔁 0 💬 0 📌 0

I know right! Gonna be a strange and scary world.

21.02.2026 21:25 👍 0 🔁 0 💬 1 📌 0
Preview
Amazon: AI-assisted hacker breached 600 Fortinet firewalls in 5 weeks Amazon is warning that a Russian-speaking hacker used multiple generative AI services as part of a campaign that breached more than 600 FortiGate firewalls across 55 countries in five weeks.

www.bleepingcomputer.com/news/securit...

21.02.2026 20:03 👍 1 🔁 0 💬 1 📌 0
Preview
FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, $20M Lost in 2025 FBI reports 1,900 ATM jackpotting cases since 2020, with $40.73M lost to Ploutus malware bypassing bank authorization.

thehackernews.com/2026/02/fbi-...

21.02.2026 00:48 👍 0 🔁 0 💬 0 📌 0
Preview
AWS outages caused by AI coding bot blunder, report claims You really shouldn't give AI free rein to do anything it wants on your system.

www.tomshardware.com/tech-industr...

21.02.2026 00:45 👍 0 🔁 0 💬 0 📌 0
Preview
From the worldnews community on Reddit: Microsoft Copilot Chat error sees confidential emails exposed to AI tool Explore this post and more from the worldnews community

www.reddit.com/r/worldnews/...

20.02.2026 04:57 👍 0 🔁 0 💬 0 📌 0
Preview
Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025 Exploitation of two recently patched Ivanti Endpoint Manager Mobile (EPMM) vulnerabilities, which had been zero-days, has surged.

www.securityweek.com/ivanti-explo...

20.02.2026 04:48 👍 0 🔁 0 💬 0 📌 0
Preview
Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies Researchers show AI assistants can act as stealth C2 proxies, enabling malware communication, evasion, and runtime attack automation.

thehackernews.com/2026/02/rese...

18.02.2026 05:47 👍 0 🔁 0 💬 0 📌 0

Google Voluntary Exit Packages Target AI Holdouts (2026)

16.02.2026 04:47 👍 0 🔁 0 💬 0 📌 0
Preview
Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.

thehackernews.com/2026/02/micr...

15.02.2026 20:31 👍 0 🔁 0 💬 0 📌 0
Preview
One threat actor responsible for 83% of recent Ivanti RCE attacks Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as...

www.bleepingcomputer.com/news/securit...

14.02.2026 22:35 👍 0 🔁 0 💬 0 📌 0
Preview
Claude Desktop Extensions 0-Click RCE Vulnerability Exposes 10,000+ Users to Remote Attacks A new critical vulnerability discovered by security research firm LayerX has exposed a fundamental architectural flaw in how Large Language Models (LLMs) handle trust boundaries.

cybersecuritynews.com/claude-deskt...

13.02.2026 18:41 👍 0 🔁 0 💬 0 📌 0
Preview
Post-Quantum Cryptography: Standards and Progress Posted by Royal Hansen, VP, Privacy, Safety and Security Engineering, Google, and Phil Venables, VP, TI Security & CISO, Google Cloud The...

security.googleblog.com/2024/08/post...

08.02.2026 15:55 👍 0 🔁 0 💬 0 📌 0
Playing with HTTP/2 CONNECT In HTTP/1, the CONNECT method instructs a proxy to establish a TCP tunnel to a requested target. Once the tunnel is up, the proxy blindly forwards raw traffic in both directions. This mechanism is mos...

blog.flomb.net/posts/http2c...

08.02.2026 03:48 👍 0 🔁 0 💬 0 📌 0
Preview
From the websecurityresearch community on Reddit: Top 10 new web hacking techniques of 2025 Explore this post and more from the websecurityresearch community

www.reddit.com/r/websecurit...

08.02.2026 03:47 👍 0 🔁 0 💬 0 📌 0
Preview
Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries Anthropic’s Claude Opus 4.6 identified 500+ unknown high-severity flaws in open-source projects, advancing AI-driven vulnerability detection.

thehackernews.com/2026/02/clau...

06.02.2026 13:44 👍 0 🔁 0 💬 0 📌 0
Preview
AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack AISURU/Kimwolf launched a record 31.4 Tbps DDoS attack as 2025 saw 47.1M incidents, rising botnet scale, and Android device abuse.

thehackernews.com/2026/02/aisu...

06.02.2026 00:10 👍 0 🔁 0 💬 0 📌 0
Preview
EDR killer tool uses signed kernel driver from forensic software Hackers are abusing a legitimate but long-revoked EnCase kernel driver in an EDR killer that can detect 59 security tools in attempts to deactivate them.

www.bleepingcomputer.com/news/securit...

05.02.2026 01:08 👍 0 🔁 0 💬 0 📌 0
Preview
Police Raid SpaceX's Brand New Offices SpaceX and xAI are now the same company -- which means French authorities' raid on an X office is now a space company problem.

futurism.com/artificial-i...

04.02.2026 04:36 👍 0 🔁 0 💬 0 📌 0
Notepad++ Hijacked by State-Sponsored Hackers | Notepad++

notepad-plus-plus.org/news/hijacke...

02.02.2026 05:30 👍 0 🔁 0 💬 0 📌 0
Preview
US probes claims Meta employees had “unfettered” access to WhatsApp chats US law enforcement authorities have been investigating allegations that Meta employees had “unfettered” access to WhatsApp messages despite the company claiming the chats are encrypted.

cybernews.com/privacy/meta...

01.02.2026 05:32 👍 0 🔁 0 💬 0 📌 0