The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.
SecurityWeek

Hundreds of Internet-Facing VNC Servers Expose ICS/OT

Forescout has identified tens of thousands of exposed RDP and VNC servers that can be mapped to specific industries.
WinBuzzer

Windows 11 April Patches Trigger Remote Desktop Bug

Microsoft has confirmed an April Windows 11 bug that can garble Remote Desktop security warnings on mixed-scaling monitors, ...