The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
The Hacker News

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

North Korea-linked ScarCruft uses fake Microsoft Account alerts and ZIP files to deliver NarwhalRAT, a Python RAT built for ...
Hosted on MSN

Hack '95 - Official announcement trailer

Time travel to 1995 in this card-based computer hacking voyage. Watch the Hack '95 announcement trailer for this upcoming game. Take down an evil tech startup and shadowy government agency to become a ...
MIT Technology Review

The Meta hack shows there’s more to AI security than Mythos

Some AI cybersecurity threats are incredibly simple. They’re still dangerous. On June 5, 404 Media reported that attackers had been using Meta’s AI customer support agent to steal Instagram accounts.
The Hollywood Reporter

The Lost ‘Airbender’: How Paramount’s Movie Hack Spiraled Into a Crisis

In a major breach in April, someone leaked a copy of the next ‘Avatar’ installment, prompting a panic at the studio. Now the alleged culprit — a 26-year-old hacker who also hit the NFL — has been ...
Wired

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...
Business Wire

Hack The Box Report Reveals AI-Driven Shift Reshaping Cybersecurity Skills and Talent Strategy

NEW YORK--(BUSINESS WIRE)--Hack The Box, the global leader in AI cybersecurity readiness, today released its Cybersecurity Workforce Intelligence Report, revealing how AI is influencing cybersecurity ...
Forbes

Microsoft Windows Alert—Angry Hacker Drops 2 New Zero-Day Exploits

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This voice experience is generated by AI. Learn more. This ...
CNET

Canvas Hack Aftermath: Congress Wants Instructure to Answer Questions

A hacker group stole data from more than 9,000 schools using an exploit in Instructure's service. Now the House Homeland Security Committee is getting involved. Tyler is a writer for CNET covering ...
Mashable

Instructure Canvas hack update: Breach involved a specific teacher account type and interrupted finals

Students have struggled with Canvas downtime due to a data breach during school finals. Credit: Piotr Swat/SOPA Images/LightRocket via Getty Images The hacking collective ShinyHunters says it ...
Bleeping Computer

JDownloader site hacked to replace installers with Python RAT malware

The website for the popular JDownloader download manager was compromised earlier this week to distribute malicious Windows and Linux installers, with the Windows payload found deploying a Python-based ...
The Washington Post

Canvas hack exposes schools’ vulnerability to cyberattacks

The vast data breach at education platform Canvas this week exposed the vulnerability of student information as hackers increasingly target school systems, colleges and the tech companies they rely on ...