By: Isabel Mill & Oded Vanunu OpenAI Codex CLI is OpenAI’s command-line tool that brings AI model-backed reasoning into developer workflows. It can read, edit, and run code directly from the terminal, making it possible to interact with projects using natural language commands, automate tasks, and streamline day-to-day development One of its key features is […]
The post CVE-2025-61260 — OpenAI Codex CLI: Command Injection via Project-Local Configuration appeared first on Check Point Research.
The Tomiris hacker group has resurfaced with a sophisticated campaign targeting foreign ministries and government entities worldwide. Beginning in early 2025, this advanced persistent threat (APT) actor shifted its operational strategy to focus on high-value diplomatic infrastructure. By leveraging a diverse array of programming languages—including Go, Rust, C/C++, and Python—the group has enhanced its ability […]
The post Tomiris Hacker Group Added New Tools and Techniques to Attack Organizations Globally appeared first on Cyber Security News.
You must login to view this content
Terra Security announced new capabilities for security and engineering leaders seeking to operationalize Continuous Threat Exposure Management (CTEM), enabling them to determine whether newly disclosed vulnerabilities are exploitable in their own environments. Recent vulnerabilities discovered in major application frameworks, including ORM layers, routing systems, and serialization pipelines, have revealed a systemic issue facing cybersecurity programs: organizations can detect vulnerabilities at scale but cannot validate exploitability at scale. As web applications grow more dynamic and interconnected, … More →
The post Terra Security introduces continuous exploitability validation for CTEM programs appeared first on Help Net Security.
German and Swiss law enforcement agencies have taken down Cryptomixer, an illegal cryptocurrency mixer service, and have confiscated over 25 million euros (approximately $29 million) in Bitcoin. The Cryptomixer seizure banner As part of Operation Olympia, and with support from the EU’s Europol and Eurojust, the agencies have seized three servers in Zurich, Switzerland and the cryptomixer.io domain, on which they plastered a warning: “Law enforcement agencies have seized databases and other information relating to … More →
The post Cryptomixer crypto laundering service taken down by law enforcement appeared first on Help Net Security.