Mail2Shell zero-click attack lets hackers hijack FreeScout mail servers

A maximum severity vulnerability in the FreeScout helpdesk platform allows hackers to achieve remote code execution without any user interaction or authentication.
Make Tech Easier

I Analyzed the Latest Windows ‘MaaS’ Scams — Here is What You Need to Know

Cybercriminals are now able to rent Malware-as-a-service and legally install malware on your PC. Learn how to identify these ...
The Hacker News

SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains

SloppyLemming targeted Pakistan and Bangladesh with BurrowShell, a Rust keylogger, and 112 Cloudflare Workers domains in 2025–2026.
Microsoft

Signed malware impersonating workplace apps deploys RMM backdoors

Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise ...

OpenAI releases Codex for Windows

OpenAI today released the Codex app for Windows, powered by OpenAI’s frontier coding models, and it’s now the only coding agent with a first-class Windows experience.
GitHub

TeleC2 - Telegram Command and Control System

TeleC2 is a Python-based Remote Administration Tool (RAT) that leverages the Telegram Bot API for covert command and control (C2) communication. This allows an operator to remotely manage and monitor ...