The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT ...

Mail2Shell zero-click attack lets hackers hijack FreeScout mail servers

A maximum severity vulnerability in the FreeScout helpdesk platform allows hackers to achieve remote code execution without any user interaction or authentication.

The FBI Says These Smart Home Devices Are Unsafe, And Here's Why

With our embrace of smart technology, we have collectively traded safety for comfort, making ourselves vulnerable to hackers.

Microsoft: Hackers abusing AI at every stage of cyberattacks

Microsoft says threat actors are increasingly using artificial intelligence in their operations to accelerate attacks, scale ...

The 5 Things You Should Do First If You Get Hacked

If you suspect you've been hacked, it's crucial to act fast and secure your devices and accounts to avoid further losses.

Microsoft warns of new signed malware which deploys remote monitoring tools as backdoors

TrustConnect is back, this time used to deploy legitimate but weaponized RMM solutions.
Computer Weekly

Iranian hacktivists muster their forces but state APTs lay low

Hacktivist activity surrounding the Iran war is sky-high but Iran's state-backed cyber espionage actors have yet to show their hands, giving security teams a valuable window of time to shore up their ...

Fears vengeful Iran has activated sleeper agents INSIDE Britain – while Tehran’s hacker army ‘is ready to attack UK’

BRITS have been warned that Iran has triggered sleeper agents inside the UK as Tehran-backed cyber warriors look to unleash ...
Cybernews

Popular AI coding tool Blackbox AI, with 5M downloads, grants root access to hackers

BlackBox AI, a popular VS Code coding assistant, has a critical indirect prompt injection vulnerability. Hackers can exploit this to gain remote root access to a user’s computer.

Technology experimentation: Run Moltbook only in secure, isolated environments

According to Karolis Arbaciauskas, head of product at the cybersecurity company NordPass: “Moltbook and OpenClaw have attracted tech-savvy tinkerers with unprecedented opportunities for ...
Computer Weekly

NCSC: No increase in cyber threat from Iran, but be prepared

While cyber threat levels remain stable following the outbreak of war in the Middle East at the weekend, at-risk ...

Why encrypted backups may fail in an AI-driven ransomware era

Why encrypted backups may fail in an AI-driven ransomware era ...