News

Infosecurity Magazine2d
Widespread Campaign Targets Cybercriminals and Gamers
Sophos has uncovered a scheme planting malicious code in 130+ GitHub repositories, targeting hackers and gamers ...
Hacker targets other hackers and gamers with backdoored GitHub code
A hacker targets other hackers, gamers, and researchers with exploits, bots, and game cheats in source code hosted on GitHub ...
Security Boulevard2d
What TikTok’s virtual machine tells us about modern bot defenses
A recent Hacker News post looked at the reverse engineering of TikTok’s JavaScript virtual machine (VM). Many commenters assumed the VM was malicious, designed for invasive tracking or ...
Sysdig detects AI-assisted malware exploiting Open WebUI misconfigurations
Discovered by Sysdig’s Threat Research Team, the malware campaign involved exploiting misconfigured instances of Open WebUI, ...
WeLiveSecurity1d
BladedFeline: Whispering in the dark
ESET researchers analyzed a cyberespionage campaign conducted by BladedFeline, an Iran-aligned APT group with likely ties to ...
SecurityWeek4d
In Other News: PoC for Fortinet Bug, AI Model Subverts Shutdown, RAT Source Code Leaked
Simple PoC code released for Fortinet zero-day, OpenAI O3 disobeys shutdown orders, source code of SilverRAT emerges online.
Malicious RubyGems pose as Fastlane to steal Telegram API data
Two malicious RubyGems packages posing as popular Fastlane CI/CD plugins redirect Telegram API requests to ...
Decrypt4d
BitMEX Blocks Lazarus Phishing Attempt, Calls Tactics ‘Unsophisticated’
BitMEX says it foiled a Lazarus phishing attempt posing as an NFT collab, citing sloppy tradecraft and reused tactics.
WinBuzzer3d
AI Attacks AI: Open WebUI Interface Used By Popular AI Chatbots Breached by Malware
Attackers are exploiting misconfigured Open WebUI, a web-based interface for AI models with AI-generated malware.