The Hacker News

RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware

RomCom just hit a US engineering firm via SocGholish for the first time, deploying Mythic Agent before defenders cut the ...

A weekend ‘vibe code’ hack by Andrej Karpathy quietly sketches the missing layer of enterprise AI orchestration

Andrej Karpathy’s weekend “vibe code” LLM Council project shows how a simple multi‑model AI hack can become a blueprint for ...
The Hacker News

Shai-Hulud v2 Campaign Spreads From npm to Maven, Exposing Thousands of Secrets

"As a new and significantly more aggressive wave of npm supply chain malware, Shai-Hulud 2 combines stealthy execution, ...
Cyber Daily

Zero chill: Scattered Lapsus$ Hunters' next target could be Zendesk customers

Security researchers believe Qantas & Salesforce hackers could be in the middle of a campaign targeting users of the popular ...
Cyber Daily

Exclusive: Hackers claim theft of 150GB of patient data from Outback Pharmacies

Beast ransomware group posts medical and treatment details of patients of a Broken Hill-based healthcare group.
Bitdefender

Patch Your Browser! Chrome V8 Security Bug Likely Exploited by Hackers, Says Google

Google has released an important security fix for Chrome users on desktop, signaling that hackers may be exploiting the issue ...
U.Today

'Crypto Copilot' Extension Sends SOL to Hacker: Details

According to a recent report, the “Crypto Copilot” Chrome extension is siphoning SOL from anyone who installs it. The ...

Holiday Hosting Hacks: Yummy J's

We're continuing our Holiday Hosting hacks with a show-stopping side dish that puts a Creole twist on a comfort food staple.
PCMag on MSN

Patch Now: Google Warns of 'High Severity' Bug Targeting Chrome

A 'type confusion' flaw in Chrome's V8 JavaScript engine can enable a hacker to corrupt the software's memory and execute ...
TechJuice

Hackers Unleash A Terrifying New Malware That Lives on the Blockchain and Can’t Be Erased

New EtherHiding malware embeds malicious payloads in blockchain smart contracts after compromising websites, evading takedowns.

WordPress users beware - GootLoader strikes again, using font hack to spread malware

Gootloader malware resurfaced in late October 2025 after a nine-month hiatus, used to stage ransomware attacks Delivered via malicious JavaScript hidden in custom web fonts, enabling stealthy remote ...

Google exposes BadAudio malware used in APT24 espionage campaigns

China-linked APT24 hackers have been using a previously undocumented malware called BadAudio in a three-year espionage ...