The Hacker News

Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware

Four rogue NuGet packages and one npm package stole ASP.NET Identity data, deployed C2 backdoors, and reached over 50,000 ...
GitHub

OWASP ZSC

THIS SOFTWARE WAS CREATED TO CHALLENGE ANTIVIRUS TECHNOLOGY, RESEARCH NEW ENCRYPTION METHODS, AND PROTECT SENSITIVE OPEN SOURCE FILES WHICH INCLUDE IMPORTANT DATA. CONTRIBUTORS AND OWASP FOUNDATION ...
The Hacker News

Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India

Transparent Tribe uses AI tools to mass-produce polyglot malware targeting India using Slack, Discord, and Google Sheets C2.

APT37 hackers use new malware to breach air-gapped networks

North Korean hackers are deploying newly uncovered tools to move data between internet-connected and air-gapped systems, spread via removable drives, and conduct covert surveillance.
ZDNet

The 6 Linux distros I expect to rule 2026 - as someone who's tested hundreds (and for decades)

Linux is set for a big year in 2026. There will be a few distributions that will surprise people. These six distros will be on everyone's list by year's end. It seems I went to bed, and it was just ...
GitHub

Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)

The size of the reflective loader is approximately 4KB. Does not release the memory that was allocated by the injector, nor does it remove any existing RWX permissions set by the user injector, if ...
Cyber Wire

A spyware swiss army knife.

ZeroDayRAT delivers full mobile compromise on Android and iOS. The UK warns infrastructure operators to act now as severe cyber threats mount. Russia moves to block Telegram. The FTC draws a line on ...