A critical flaw in OpenPGP.js (CVE-2025-47934) allows attackers to spoof valid signatures by appending malicious data to signed messages. PoC code available.

Today is Microsoft's June 2025 Patch Tuesday, which includes security updates for 66 flaws, including one actively exploited vulnerability and another that was publicly disclosed.

DanaBot's "DanaBleed" memory leak, active for 3 years, exposed C2 server data, aiding law enforcement in Operation Endgame takedown.

ChatGPT o3, which has been available via API, is now 80% cheaper for developers, and there's no visible impact on performance.

OpenAI is working to fix an ongoing outage impacting ChatGPT users worldwide and preventing them from accessing the chatbot on the web or via mobile and desktop apps.

Mark Zuckerberg is personally recruiting top AI talent with multi-million dollar offers, investing billions to develop superintelligent AI at Meta.

OpenAI has slashed its o3 model API prices by 80%, dropping output costs to $8/million tokens. This makes o3 highly competitive in the AI market.

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread...

Siemens Energy warns of a critical 9.9 CVSS flaw in its G5DFR component, allowing remote control via default credentials. Change passwords immediately!

OpenAI unveils o3-pro, a new reasoning AI model with enhanced capabilities for ChatGPT Pro/Teams and API users, offering deeper contemplation and precision.

A flaw (CVE-2025-4232) in GlobalProtect for macOS allows local users to escalate to root. Public PoC code exists. Update now!

Last year’s data plus plenty of simulation are meant to create a level playing field.

Two Windows Kernel vulnerabilities allow SYSTEM-level privilege escalation. PoC exploit code is publicly available.

GitLab issues urgent updates for high-severity flaws in CE/EE, including HTML injection (account takeover) and CI/CD code injection. Upgrade to 18.0.2, 17.11.4, or 17.10.8 immediately.

CyberEye, a modular .NET RAT, offers widespread data theft and surveillance using a builder, Telegram C2, and anti-analysis features, making it a new threat.