The ‘Unhackable’ Xbox One Has Finally Been Hacked, 12 Years After Release

A few things about Gaasedelen’s discovery before we get into it: firstly, this only works on original Xbox One consoles, so the Xbox One S and Xbox One X systems remain impenetr ...
Pure Xbox

'The Day Has Finally Arrived' - Xbox One Receives Its First Major Hack After 12+ Years

The result is a console that's taken over 12 years to properly hack, but someone has finally managed to do it. In an hour-long presentation at RE//verse 2026 recently, security researcher Markus ...
InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...

Apple patches older iPhones and iPads against Coruna exploits

Apple has released security updates to patch older iPhones and iPads against a set of vulnerabilities targeted in ...
Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...
PCMag on MSN

Fake Apps, Fraudulent Emails, and Very Real Hackers: Another Week in the Infosec Trenches

This week saw attacks on Claude Code users, LastPass users, Starlink users, and, perhaps worst of all, people who needed an ambulance. Add a dash of AI hacking, and you have another wild week in ...

Fake Claude Code Spreads Malware to Windows, macOS Users

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems.
WinBuzzer

GitHub: Glassworm Hides Malware in Invisible Unicode Across 151+ Repos

The Glassworm campaign has compromised over 151 GitHub repositories and npm packages using invisible Unicode payloads that evade standard code review.