Breaking News – Cyber Threats (last 6h)
Generated: 2026-02-02 12:00 PST
- Malicious MoltBot skills used to push password-stealing malware
BleepingComputer • 2026-02-02 11:11 • www.bleepingcomputer.com
More than 230 malicious packages for the personal AI assistant OpenClaw (formerly known as Moltbot and ClawdBot) have been published in less than a week on the tool’s official registry and on GitHub. […]
https://www.bleepingcomputer.com/news/security/malicious-moltbot-skills-used-to-push-password-stealing-malware/ - Mozilla announces switch to disable all Firefox AI features
BleepingComputer • 2026-02-02 10:09 • www.bleepingcomputer.com
In response to user feedback on AI integration, Mozilla announced today that the next Firefox release will let users disable AI features entirely or manage them individually. […]
https://www.bleepingcomputer.com/news/software/mozilla-will-let-you-turn-off-all-firefox-ai-features/ - Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users
The Hacker News • 2026-02-02 09:49 • thehackernews.com
A security audit of 2,857 skills on ClawHub has found 341 malicious skills across multiple campaigns, according to new findings from Koi Security, exposing users to new supply chain risks.
ClawHub is a marketplace designed to make it easy for OpenClaw users to find and install third-party skills. It’s an extension to the OpenClaw project, a self-hosted artificial intelligence (AI) assistant
https://thehackernews.com/2026/02/researchers-find-341-malicious-clawhub.html - Microsoft: January update shutdown bug affects more Windows PCs
BleepingComputer • 2026-02-02 09:17 • www.bleepingcomputer.com
Microsoft has confirmed that a known issue preventing some Windows 11 devices from shutting down also affects Windows 10 systems with Virtual Secure Mode (VSM) enabled. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-january-update-shutdown-bug-affects-more-windows-pcs/ - OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link
The Hacker News • 2026-02-02 08:28 • thehackernews.com
A high-severity security flaw has been disclosed in OpenClaw (formerly referred to as Clawdbot and Moltbot) that could allow remote code execution (RCE) through a crafted malicious link.
The issue, which is tracked as CVE-2026-25253 (CVSS score: 8.8), has been addressed in version 2026.1.29 released on January 30, 2026. It has been described as a token exfiltration vulnerability that leads to
https://thehackernews.com/2026/02/openclaw-bug-enables-one-click-remote.html - Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos
The Hacker News • 2026-02-02 07:59 • thehackernews.com
Microsoft has announced a three-phase approach to phase out New Technology LAN Manager (NTLM) as part of its efforts to shift Windows environments toward stronger, Kerberos-based options.
The development comes more than two years after the tech giant revealed its plans to deprecate the legacy technology, citing its susceptibility to weaknesses that could facilitate relay attacks and allow bad
https://thehackernews.com/2026/02/microsoft-begins-ntlm-phase-out-with.html - CTM360 Report Warns of Global Surge in Fake High-Yield Investment Scams
BleepingComputer • 2026-02-02 07:34 • www.bleepingcomputer.com
Fake high-yield investment platforms are surging worldwide, promising “guaranteed” returns that mask classic Ponzi schemes.CTM360 explains how HYIP scams scale through social media, recycled templates, and referral abuse. […]
https://www.bleepingcomputer.com/news/security/ctm360-report-warns-of-global-surge-in-fake-high-yield-investment-scams/ - Scanning for exposed Anthropic Models, (Mon, Feb 2nd)
SANS ISC Diary (full) • 2026-02-02 07:14 • isc.sans.eduYesterday, a single IP address (%%ip:204.76.203.210%%) scanned a number of our sensors for what looks like an anthropic API node. The IP address is known to be a Tor exit node.
- Notepad++ update feature hijacked by Chinese state hackers for months
BleepingComputer • 2026-02-02 06:53 • www.bleepingcomputer.com
Chinese state-sponsored threat actors were likely behind the hijacking of Notepad++ update traffic last year that lasted for almost half a year, the developer states in an official announcement today. […]
https://www.bleepingcomputer.com/news/security/notepad-plus-plus-update-feature-hijacked-by-chinese-state-hackers-for-months/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
