Russian cyberespionage group APT28 has developed malware that generates commands by querying large language models (LLMs). The malware, dubbed LAMEHUG by the Ukrainian CERT, was used in recent spear phishing attacks against Ukrainian government entities and represents a new example of how attackers are using AI in their attacks .
The phishing emails were sent from a compromised email account and impersonated a representative of an Ukrainian ministry, according to the CERT-UA report . The malware...
CrushFTP zero-day exploited in attacks to gain admin access on servers
BleepingComputer
3 hours ago
CrushFTP zero-day exploited in attacks to gain admin access on servers Lawrence Abrams July 18, 2025 06:24 PM 0 CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability ...
