The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.
CRN

AI Let ‘Unsophisticated’ Hacker Breach 600 Fortinet Firewalls, AWS Says, As AI Lowers ‘The Barrier’ For Threat Actors

Hackers use AI, GenAI and LLMs to breach Fortinet FortiGate firewalls as cybersecurity and threat actors leverage AI for cyber-attacks, AWS report finds.
Wired

Security News This Week: US Hackers Reportedly Caused a Blackout in Venezuela

Plus: AI reportedly caused ICE to send agents into the field without training, Palantir’s app for targeting immigrants gets exposed, and more. As Immigration and Customs Enforcement continues its ...
Ars Technica

Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack

Pairing Bluetooth devices can be a pain, but Google Fast Pair makes it almost seamless. Unfortunately, it may also leave your headphones vulnerable to remote hacking. A team of security researchers ...
Wired

Hundreds of Millions of Audio Devices Need a Patch to Prevent Wireless Hacking and Tracking

Flaws in how 17 models of headphones and speakers use Google’s one-tap Fast Pair Bluetooth protocol have left devices open to eavesdroppers and stalkers. Today, security researchers at Belgium’s KU ...
IEEE

Ultra-Fast Wireless Energy Hacking for Roadway Charging: Overcoming Frequency-Varying Encryption and Parameter Drift

Abstract: The rapid growth of electric vehicles (EVs) has driven the development of roadway wireless charging technology, effectively extending EV driving range. However, wireless charging introduces ...
GM Authority

Open-Source Hack Potentially Brings Wireless Apple CarPlay To GM EVs

As GM Authority has covered at length, GM is phasing out Apple CarPlay and Android Auto from its new EVs, triggering pushback from buyers who feel as through the popular smartphone mirroring apps are ...
SecurityWeek

Australian Man Sentenced to Prison for Wi-Fi Attacks at Airports and on Flights

An Australian man has been sentenced to prison after he was caught launching Wi-Fi attacks at airports and on flights, the Australian Federal Police (AFP) announced. The police’s press release does ...
The Hacker News

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

Cybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave the way for a supply chain compromise on the Python Package Index (PyPI) via a domain ...
The Verge

AirPods’ best features come to Android and Linux with free app

You no longer need an iPhone to use AirPods features like ear detection, adaptive transparency, and hearing aid modes. You no longer need an iPhone to use AirPods features like ear detection, adaptive ...
GitHub

python-hack

WiFi Password Cracker is a Python script that retrieves saved WiFi profiles and their passwords on a Windows machine. It uses the netsh command to access and display this information. The script uses ...