The Hacker News

Trojanized Gaming Tools Spread Java-Based RAT via Browser and Chat Platforms

Trojanized gaming tools and new Windows RATs like Steaelite enable data theft, ransomware, and persistent remote control.
The Hacker News

Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations

Fake IT support calls delivered Havoc C2, enabling credential theft, lateral movement, and ransomware prep across five ...

Chrome Extension Hijacked to Deliver Malware, Steal Crypto Wallets

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.
Dark Reading

Malicious Next.js Repos Target Developers Via Fake Job Interviews

Linked to North Korean fake job-recruitment campaigns, the poisoned repositories are aimed at establishing persistent C2 ...

CISA warns that RESURGE malware can be dormant on Ivanti devices

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released new details about RESURGE, a malicious implant used in zero-day attacks exploiting CVE-2025-0282 to breach Ivanti Connect ...
TechJuice

China Associated APT41 Hackers Deploy Silver Dragon Malware Operation

China linked APT41 hackers deploy Silver Dragon campaign targeting organizations with malware and espionage tactics.

Why encrypted backups may fail in an AI-driven ransomware era

Why encrypted backups may fail in an AI-driven ransomware era ...
Tech Wire Asia

Google Cloud and Nokia bring agentic AI to telecom networks

Google Cloud and Nokia are working to integrate agentic AI into telecom networks through Nokia’s Network as Code platform.

‘Resurge’ malware can remain undetected on devices

The malware can remain undetected on a system until a threat actor initiates a connection with the compromised device, a CISA ...

When Everyone Can Code: How AI Breaks Traditional Software Security

Not only are we less clear about who is developing software, but we are also less confident about our total inventory of ...

Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...