Capitol Hill Seattle

911 | Monday school lockdowns, Super Bowl 911, and six busted in Capitol Hill Safeway ‘retail theft operation’

See something others should know about? Email CHS or call/txt (206) 399-5959. You can view recent CHS 911 coverage here. Hear sirens and wondering what’s going on? Check out reports ...
Dark Reading

DPRK Actors Deploy VS Code Tunnels for Remote Hacking

A spear-phishing campaign by North Korean actors is abusing a legitimate feature of Microsoft Visual Studio (VS) Code to gain full remote control of targeted systems. In the campaign, discovered by ...
Ars Technica

Anthropic launches Cowork, a Claude Code-like for general computing

Anthropic’s agentic tool Claude Code has been an enormous hit with some software developers and hobbyists, and now the company is bringing that modality to more general office work with a new feature ...
TechSpot

DarkSpectre quietly infected millions through seemingly legit browser extensions

In a nutshell: Cybersecurity researchers at Koi recently uncovered DarkSpectre, a Chinese operation linking multiple malicious campaigns through browser extensions. Hundreds of seemingly legitimate ...
Crowdfund Insider

EVM and Blockchain Adoption : Tenderly Now an Official Polygon Public RPC Provider

Tenderly reports that it is now an official public RPC provider for Polygon, joining the network of infrastructure partners powering one of the “most widely adopted EVM-compatible chains.” Clients may ...
Network World

HPE OneView vulnerable to remote code execution attack

An unauthenticated user can execute the attack, and there’s no mitigation, just a hotfix that should be applied immediately. A maximum severity remote code execution vulnerability in Hewlett Packard ...
ZDNet

Vibe coding feels magical, but it can sink your business fast - here's how

Vibe coding enables one to program in plain English. However, it means speed over code review and rigor. Code quality may be inconsistent. Vibe coding has become the new must-do in technology shops.
InfoWorld

Flaw in React Native CLI opens dev servers to attacks

The bug exposes the Metro development server to remote attacks, allowing arbitrary OS command execution on developer systems before a fix in version 20.0.0. A critical remote-code execution (RCE) flaw ...
Infosecurity-magazine.com

New GDI Flaws Could Enable Remote Code Execution in Windows

A set of previously unknown flaws in Windows Graphics Device Interface (GDI) that could enable remote code execution and information disclosure has been revealed after Microsoft released fixes. These ...
Infosecurity-magazine.com

Critical WatchGuard Fireware OS Flaw Enables Remote Code Execution

A critical vulnerability (CVSS4.0 9.3) in WatchGuard Fireware OS has been identified that could allow a threat actor to remotely execute arbitrary code. The bug, tracked as CVE-2025-9242, is an out-of ...
TechSpot

Two critical flaws put 7-Zip users at risk of remote code execution

In a nutshell: The 7-Zip file archiver is a popular open-source alternative to paid programs like WinZip and WinRAR. Widely used by both organizations and individuals, it has also become a frequent ...
Network World

Cisco admins urged to patch IOS, IOS XE devices

Network admins should quickly patch a vulnerability in Cisco Systems IOS and IOS XE software to remove a stack overflow condition in the software’s Simple Network Management Protocol (SNMP) subsystem ...