Oste

BREAKING: SpaceX has agreed to acquire Cursor, the world's fastest growing software startup, for $60 billion in an all stock deal. Cursor has over 1 million paying customers, more than $2 billion in annualized revenue, and is projected to hit $6 billion by end of 2026. At $60 billion, this is the largest software acquisition in history, paying 20 to 30 times Cursor's current revenue. The deal is subject to regulatory approval and expected to close in Q3 2026. SpaceX now owns the rockets, the satellites, the AI models, the chips, and is about to own the tool every developer on earth uses to write code.

Update: the AUR compromise appears to be ongoing After the initial incident affecting 1,500+ packages, another wave of malicious AUR packages has been discovered. This time the attackers reportedly used code obfuscation to better conceal the malicious behavior. Affected packages included Node.js packages, Firefox-related packages, LibreWolf extensions, NeoVim plugins and others. If you’re using #Arch Linux and install software from AUR, I’d review recently updated packages and keep an eye on this story. https://t.co/4eD3Ola9DH

❗️ Imagine a whole town built just to fight cybercrime. The FBI's Kinetic Cyber Range in Huntsville, Alabama is a 22,000-sq-ft fully furnished replica of a small U.S. community. Houses, a hospital, a courthouse, a power plant, and even a data center with more than 200 physical servers. The range lets trainees face the same devices, networks, and operational constraints they'll hit in the field, from cramped server rooms to hospital systems that could go dark in an emergency.

🛑 A free phishing platform ran for nearly 10 years. Sniper Dz offered ready-made kits, hosting, and support to fake PayPal, Facebook, Netflix, and Steam login pages. Now, an INTERPOL-led operation disrupted it, with 201 arrests across 13 MENA countries. Read: https://t.co/i0P8MFPsNC

‼️🚨 Unauthenticated attackers are gaining SYSTEM on domain controllers with crafted packets. The vulnerability being exploited is CVE-2026-41089, a CVSS 9.8 hole in Windows Netlogon, and exploitation in the wild has been confirmed. A patch has existed since May 12. Every DC still behind is not just vulnerable, but according to the Centre for Cybersecurity Belgium are also actively being pwnd.

‼️ Anthropic's recently released frontier model Fable 5 was jailbroken by someone using a jailbroken version of Claude Opus. The researcher who goes by the moniker pliny carried out the jailbreak and says: "the consensus seems to be that this has been one of the most disappointing model drops of all time, effectively preventing legitimate researchers from contributing their talents to our collective advancement" The jailbroken version can be used for research into and exploitation of vulnerabilities.

📌 NTLM Leak via Windows Search URI Handler The article discusses a vulnerability in the Windows "search:" URI handler that leads to the leakage of Net-NTLMv2 password hashes. The issue stems from improper handling of parameters (e.g., "crumb=location:"), which allows passing a UNC path to a remote SMB resource. As a result, the system automatically initiates NTLM authentication to an attacker-controlled server, exposing the user’s credential hash. The vulnerability is conceptually similar to a previously patched issue (CVE-2026-33829 -> (https://t.co/K93hgzN6IP)), but in this case, no CVE or official patch is available. PT ID: PT-2026-32887 Once the hash is leaked, an attacker can use it for NTLM relay attacks or further compromise of the infrastructure. A key aspect of this vulnerability is that it does not require code execution on the target system and can be integrated into coercion attack chains, expanding the attack surface through standard Windows URI handler mechanisms. 📎 Article: https://t.co/cSSVPld5H2 #dbugs_attacks