The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery ...

AI connector for Google Calendar makes convenient malware launchpad, researchers show

'Claude DXT's container falls noticeably short of what is expected from a sandbox' LayerX, a security company based in Tel Aviv, says it has identified a zero-click remote code execution vulnerability ...
The Hacker News

China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns

China-linked Amaranth-Dragon and Mustang Panda target Southeast Asian governments using WinRAR exploit and PlugX phishing ...
CSO Online

New APT group breached gov and critical infrastructure orgs in 37 countries

Security researchers from Palo Alto Networks believe the likely Asia-based group is expanding its activities, which include ...

Asia-based government spies quietly broke into critical networks across 37 countries

And their toolkit includes a new, Linux kernel rootkit A state-aligned cyber group in Asia compromised government and critical infrastructure organizations across 37 countries in an ongoing espionage ...
WinBuzzer

As Malicious Skills Flood OpenClaw AI Marketplace, Inventor Turns to VirusTotal For Help

Attackers have uploaded over 300 malicious skills to OpenClaw's AI marketplace, turning it into a malware delivery system ...

Malicious 7-Zip site distributes installer laced with proxy tool

A fake 7-Zip website is distributing a trojanized installer of the popular archiving tool that turns the user's computer into ...

A fake 7‑Zip installer is spreading, and the malware’s goal is unexpected

Here is what the fake 7-Zip installer does behind the scenes, how it maintains persistence, and what steps to take if you ...

Beware, this fake site offers up a malicious 7-Zip installer laced with malware

Fake 7zip.com site sounds incredible, but don't be fooled.

Fake ‘Antivirus’ App Spreads Android Malware, Steals Banking Credentials

A fake Android antivirus app called TrustBastion is spreading malware and stealing banking credentials. Here’s how it works and how to stay protected.

Android malware hidden in fake antivirus app

Fake antivirus app TrustBastion uses Hugging Face to deliver Android malware that captures screenshots, steals PINs and shows fake login screens, according to Bitdefender.