Russian fake-text hijacks, NIST CVSS cuts

NIST’s new enrichment policy leaves 5,000+ CVEs without CVSS scores, forcing teams to rely on inconsistent vendor data. In the first two months only 20% of published CVEs received NIST CVSS vectors, and more than a thousand selected for enrichment remain unanalyzed. This coverage gap threatens automated triage and risk scoring across the industry.

A new CVE reveals that Mitsubishi MAC-577IF-2E Wi-Fi adapters expose a hard-coded SSID and password. Anyone within radio range can connect unauthenticated, read sensor data, change settings, or trigger a denial-of-service attack. The flaw affects multiple Mitsubishi appliances, from air conditioners to smart switches.

Europol‑coordinated Operation Eastwood dismantled more than 100 servers used by the pro‑Russian hacktivist collective NoName057(16) and issued seven arrest warrants, arresting two members in France and Spain. The crackdown also warned over a thousand supporters of legal liability, aiming to cripple the group’s DDoS‑as‑a‑service engine.

Ukraine’s security service and the FBI uncovered a Russian‑run phishing campaign that masquerades as messaging‑app support bots to steal login credentials from officials, military personnel and activists. The operation targets apps like Signal and WhatsApp, exposing sensitive military, political and economic data and highlighting the growing focus on credential‑theft via SMS spoofing.

Ukraine’s security service and the FBI uncovered a Russian‑run phishing campaign that masquerades as messaging‑app support bots to steal login credentials from officials, military personnel and activists. The operation targets apps like Signal and WhatsApp, exposing sensitive military, political and economic data and highlighting the growing focus on credential‑theft via SMS spoofing.

Gen Threat Labs uncovered Remus, a 64‑bit infostealer that directly evolves from the Lumma codebase. It swaps Lumma’s Steam/Telegram dead‑drop resolvers for EtherHiding and adds a new Application‑Bound Encryption bypass, boosting evasion against sandboxes. The shift to 64‑bit expands its target surface and signals a new wave of sophisticated MaaS threats.

Committee leaders Brett Guthrie and Frank Pallone announced a bipartisan KIDS Act package that bundles the Kids Online Safety Act with 18 other measures. The deal clears the path for a House floor vote on KOSA next Monday, raising privacy and speech concerns over its age‑verification mandates.

SpecterOps used OpenAI Codex with TTDObjectsPy to feed real execution traces into a language model, letting it query Time Travel Debugging data instead of relying on static decompilation. The approach slashes false‑positive hypotheses and speeds up malware analysis, demonstrated on the FLARE‑ON 12 challenge. It shows LLMs can augment, not replace, dynamic reverse‑engineering tools.