The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.
The Next Web

Mastodon adds email newsletters so people who don’t want an account can still follow creators on the open social web

Mastodon 4.6 lets creators send posts to email subscribers who don't have fediverse accounts. The feature targets institutions and independent publishers.
The Hacker News

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

North Korea-linked ScarCruft uses fake Microsoft Account alerts and ZIP files to deliver NarwhalRAT, a Python RAT built for ...
Decrypt

Moonshot AI's Kimi Work Brings 300 AI Agents to Your Desktop

Kimi Work lets an AI agent loose on your local files, your browser, and your schedule—without routing everything through the ...
PC World

Scammers are sending phishing emails from a real Microsoft address

PCWorld reports that scammers are exploiting a legitimate Microsoft email address, [email protected], to send convincing phishing emails to users. This compromised address typically handles official ...
TweakTown

The Send To menu is the right-click feature on Windows 11 that nobody bothers to customize

Use left and right arrow keys to seek audio. Most of us tweak Windows 11 in a dozen small ways without ever opening Send To. Microsoft hid it behind "Show more options" in 2021 - the default entries ...
Courthouse News Service

Ex-prosecutor charged with sending to herself copy of Smith report on Trump classified files probe

FILE - Special counsel Jack Smith speaks to the media about an indictment of former President Donald Trump, Aug. 1, 2023, at an office of the Department of Justice in Washington. (AP Photo/J. Scott ...
CNBC

Everyone should ask these 3 questions before sending an email or talking in a meeting, says CEO coach

Most people move through interactions at work on autopilot, sending messages or speaking up in meetings without really thinking about their responses until afterward, says leadership coach Aiko Bethea ...
Bleeping Computer

Apple account change alerts abused to send phishing emails

Apple account change notifications are being abused to send fake iPhone purchase phishing scams within legitimate emails sent from Apple's servers, increasing legitimacy and potentially allowing them ...