The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel ...

North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.
TechRepublic

Hugging Face Repositories Abused in New Android Malware Campaign

Hugging Face is widely used by researchers and developers to host machine learning models, datasets, and tools. But researchers say attackers have found a way to exploit that trust. Cybersecurity ...
PC World

This fake ad blocker malware impersonated uBlock Origin’s developer

PCWorld reports that a malicious Chrome extension called ‘NexShield Smart Ad Blocker’ impersonated uBlock Origin’s developer Raymond Hill to distribute the dangerous ModeloRAT trojan. The fake ad ...
PC Magazine

From Firefox Malware to Stolen Pornhub Data: This Week's Security News Is Not Sexy

A wave of recent breaches and malware discoveries shows how easily trusted software and private data can be exploited. I've been writing and editing stories for almost two decades that help people use ...
SiliconANGLE

‘PyStoreRAT’ malware uses fake developer tools on GitHub to infect Windows systems

A new report out today from endpoint security firm Morphisec Inc. details a previously undocumented malware family dubbed “PyStoreRAT” that abuses trusted open-source platforms and Windows scripting ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
CSOonline

Polymorphic AI malware exists — but it’s not what you think

We are either at the dawn of AI-driven malware that rewrites itself on the fly, or we are seeing vendors and threat actors exaggerate its capabilities. Recent Google and MIT Sloan reports reignited ...
Android Authority

New Android malware sneak-wipes your bank account: Here's how to avoid getting robbed

Researchers have identified a new banking malware that replaces your actual banking app with a malicious one. It primarily spreads through APKs distributed via unmoderated channels such as messaging ...
Dark Reading

How Malware Authors Are Incorporating LLMs to Evade Detection

Threat actors are testing malware that incorporates large language models (LLMs) to create malware that can evade detection by security tools. In an analysis published earlier this month, Google's ...
Bleeping Computer

Google exposes BadAudio malware used in APT24 espionage campaigns

China-linked APT24 hackers have been using a previously undocumented malware called BadAudio in a three-year espionage campaign that recently switched to more sophisticated attack methods. Since 2022, ...
ZDNet

Google spots malware in the wild that morphs mid-attack, thanks to AI

Google detected novel adaptive malware in the wild. This new malware uses LLMs to dynamically generate code. Google also listed other new key trends in cyberattacks. The use of artificial intelligence ...