The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Experts details PeckBirdy, a JavaScript C2 framework used since 2023 by China-aligned attackers to spread malware via fake ...
Decrypt

North Korea–Linked Hackers Use Deepfake Video Calls to Target Crypto Workers

Hackers are using AI-generated video calls to impersonate trusted contacts and trick crypto workers into installing malware.

Saudi satirist hacked with Pegasus spyware wins damages in court battle

The London High Court awarded the London-based satirist and human rights activist Ghanem Al-Masarir more than £3 million, ...

Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...
Cybernews

Pentest tools left online are allowing hackers to exploit Fortune 500 firms

Hackers are exploiting intentionally vulnerable penetration testing and security training apps that have been mistakenly exposed to the public internet, giving them access to cloud environments ...

A new LinkedIn phishing scam is targeting executives online - make sure you don't fall for this

Business executives and IT admins are being targeted by a highly sophisticated phishing attack which doesn’t happen in the ...
eWeek

Affleck, Damon Torch ChatGPT Screenplay Dreams

Ben Affleck and Matt Damon used a pit stop on "The Joe Rogan Experience" to torch the idea that ChatGPT could pen the next blockbuster. Affleck ...
The Hacker News

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...

Learn ethical hacking online with this $36 lifetime bundle! Seats still available

A deeply practical ethical hacking bundle teaches real cybersecurity, pentesting, and bug-bounty skills for just $35.99, ...

Python libraries used in top AI and ML tools hacked

The bugs have been fixed, so users should patch now, experts warn.
Dark Reading

AsyncRAT Malware Infests Orgs via Python & Cloudflare

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...
CoinTelegraph

Truebit exploit exposes smart-contract flaw behind $26M token mint

Truebit lost $26 million after a smart-contract overflow bug let an attacker mint tokens at near-zero cost, sending the TRU price down 99%. A $26 million exploit of the offline computation protocol ...