Cybersecurity
Critical Marimo Flaw Exploited to Deploy NKAbuse Malware
Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces. [..
#malware
68 articles
Cybersecurity
GlassWorm Campaign Deploys Zig Dropper Targeting Developer IDEs
Cybersecurity researchers have flagged yet another evolution of the ongoing GlassWorm campaign, which employs a new Zig dropper that's designed to stealthi
Cybersecurity
North Korean Hackers Weaponize GitHub for Covert Attack Operations
Threat actors likely associated with the Democratic People's Republic of Korea (DPRK) have been observed using GitHub as command-and-control (C2) infrastru
Cybersecurity
WordPress Plugin Suite Compromised in Mass Malware Campaign
More than 30 WordPress plugins in the EssentialPlugin package have been compromised with malicious code that allows unauthorized access to websites running them
Cybersecurity
Signed Malware Disables Antivirus Across Critical Sectors
A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on thousands of endpoints, some in the e
Cybersecurity
China-Linked Hackers Target European Governments
A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025, following a two-year period of min
Cybersecurity
Iran-Linked Hackers Wipe Data at Medical Device Giant Stryker
A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology c
Cybersecurity
Microsoft Strengthens Windows Against Malicious Remote Desktop Attacks
Microsoft has introduced new Windows protections to defend against phishing attacks that abuse Remote Desktop connection (.rdp) files, adding warnings and disab
Cybersecurity
100+ Malicious Chrome Extensions Discovered Stealing User Data
More than 100 malicious extensions in the official Chrome Web Store are attempting to steal Google OAuth2 Bearer tokens, deploy backdoors, and carry out ad frau
Cybersecurity
Counterfeit Ledger Live App Steals $9.5M in Crypto
A malicious Ledger Live app for macOS available from Apple's App Store has drained approximately $9.5 million in cryptocurrency from 50 victims in just a few da
Cybersecurity
OpenAI Rotates macOS Certificates After Supply Chain Attack
OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a recent supply
Cybersecurity
New Storm Infostealer Threat Bypasses MFA With Server-Side Decryption
New "Storm" infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, by
Cybersecurity
Adobe Patches Critical Acrobat Reader Zero-Day Flaw
Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that has been exploited in zero-day attack
Cybersecurity
Adobe Reader Zero-Day Actively Exploited via Malicious PDFs
Threat actors have been exploiting a previously unknown zero-day vulnerability in Adobe Reader using maliciously crafted PDF documents since at least December&n
Cybersecurity
36 Malicious npm Packages Target Redis, PostgreSQL
Cybersecurity researchers have discovered 36 malicious packages in the npm registry that are disguised as Strapi CMS plugins but come with different payloads to
Cybersecurity
CPUID Platform Compromised: Malware Injected Into CPU-Z Downloads
Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve malicious executables for the popular CPU-
Cybersecurity
Hackers Compromise Smart Slider 3 Plugin Update System
Hackers hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla, and pushed a malicious version with multiple backdoors. [...]
Cybersecurity
LucidRook Malware Targets NGOs and Universities in Taiwan
A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations and universities in Taiwan. [...]