AI‑Powered 0‑Day Discovery: How Attackers Autonomously Bypassed 2FA

In May 2026, Google Threat Intelligence disclosed that a cybercrime group used a large‑language model to autonomously identify a semantic‑logic flaw in a popular open‑source Python‑based web management tool, generate a Python exploit that bypasses its two‑factor authentication, and launch mass automated attacks, prompting new blue‑team detection and defense strategies.

0-day2FA bypassAI security

0 likes · 12 min read

AI‑Powered 0‑Day Discovery: How Attackers Autonomously Bypassed 2FA

Black & White Path

Apr 12, 2026 · Information Security

How an APT Hijacked Apple Accounts in 30 Seconds to Spy on Middle‑East Journalists

A three‑year investigation by Access Now, SMEX and Lookout reveals that the Indian APT group BITTER conducted rapid Apple‑ID phishing, 2FA‑relay attacks and Android spyware deployments to fully compromise the accounts of journalists across the Middle East and North Africa, often within 30 seconds of credential entry.

2FA bypassAPTAndroid spyware

0 likes · 9 min read

How an APT Hijacked Apple Accounts in 30 Seconds to Spy on Middle‑East Journalists

Black & White Path

Apr 11, 2026 · Information Security

How I Tracked and Sent the World’s Top Three Crypto Social‑Engineering Scammers to Prison

A 2.43 billion‑dollar Bitcoin heist was unraveled not by hacking code but by exploiting human psychology, as the investigator detailed the four‑step social‑engineering ploy, traced the perpetrators across multiple exchanges, and documented their eventual arrests worldwide.

2FA bypassAnyDeskBlockchain Forensics

0 likes · 9 min read