Hackvolt — IT Security News, Cybersecurity & Research & Security Audits

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody

NEWSFebruary 18, 202607 mins

New research from the Citizen Lab has found signs that Kenyan authorities used a commercial forensic extraction tool manufactured by…

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

NEWSFebruary 18, 202605 mins

Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an…

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

NEWSFebruary 18, 202604 mins

Cybersecurity researchers have disclosed multiple security vulnerabilities in four popular Microsoft Visual Studio Code (VS Code) extensions that, if successfully…

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

NEWSFebruary 17, 202606 mins

Cybersecurity researchers have disclosed that artificial intelligence (AI) assistants that support web browsing or URL fetching capabilities can be turned…

Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster

NEWSFebruary 17, 202604 mins

Cloud attacks move fast — faster than most incident response teams. In data centers, investigations had time. Teams could collect…

Microsoft Finds “Summarize with AI” Prompts Manipulating Chatbot Recommendations

NEWSFebruary 17, 202607 mins

New research from Microsoft has revealed that legitimate businesses are gaming artificial intelligence (AI) chatbots via the “Summarize with AI”…

Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers

NEWSFebruary 16, 202608 mins

A new study has found that multiple cloud-based password managers, including Bitwarden, Dashlane, and LastPass, are susceptible to password recovery…

Infostealer Steals OpenClaw AI Agent Configuration Files and Gateway Tokens

NEWSFebruary 16, 202607 mins

Cybersecurity researchers disclosed they have detected a case of an information stealer infection successfully exfiltrating a victim’s OpenClaw (formerly Clawdbot…

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

NEWSFebruary 13, 202604 mins

A previously undocumented threat actor has been attributed to attacks targeting Ukrainian organizations with malware known as CANFAIL. Google Threat…

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

NEWSFebruary 13, 202607 mins

A previously unknown threat actor tracked as UAT-9921 has been observed leveraging a new modular framework called VoidLink in its…

Hackvolt — IT Security News

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster

Microsoft Finds “Summarize with AI” Prompts Manipulating Chatbot Recommendations

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster

Microsoft Finds “Summarize with AI” Prompts Manipulating Chatbot Recommendations

Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers

Infostealer Steals OpenClaw AI Agent Configuration Files and Gateway Tokens

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages

HOOK Android Trojan Adds Ransomware Overlays, Expands to 107 Remote Commands

Product Walkthrough: How Passwork 7 Addresses Complexity of Enterprise Security

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

The AI-Powered Security Shift: What 2025 Is Teaching Us About Cloud Defense

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

You May Have Missed