The Hacker News

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

Experts reveal Evelyn Stealer malware abusing VS Code extensions to steal developer credentials, browser data, and ...
SecurityWeek

APT-Grade PDFSider Malware Used by Ransomware Groups

Attacks linked to APT and ransomware groups are relying on DLL sideloading for code execution instead of exploit-based ...
The Register on MSN

Yes, criminals are using AI to vibe-code malware

They also hallucinate when writing ransomware code Interview With everyone from would-be developers to six-year-old kids ...
TechJuice

Hackers Sneak Malware Into PCs Using Legitimate Programs

Hackers are exploiting a side-loading flaw in a signed GitKraken executable to bypass defenses and deploy trojans, stealers, ...
TechJuice

New Dual-Stage Malware Marks a Terrifying Milestone in Cyberthreat Evolution

GootLoader malware operators use deceptive installers, malicious ISO files, and browser hijacking to deliver ransomware and ...

New PDFSider Windows malware deployed on Fortune 100 firm's network

Ransomware attackers targeting a Fortune 100 company in the finance sector used a new malware strain, dubbed PDFSider, to deliver malicious payloads on Windows systems.
Threat Post

NVIDIA’s Stolen Code-Signing Certs Used to Sign Malware

NVIDIA certificates are being used to sign malware, enabling malicious programs to pose as legitimate and slide past security safeguards on Windows machines. Two of NVIDIA’s code-signing certificates ...
Infosecurity-magazine.com

Russian Actors Weaponize Legitimate Services in Multi-Malware Attack

A novel cyber campaign by Russian speaking actors abused legitimate internet services, such as GitHub and FileZilla, to deploy multiple malware variants, Recorded Future has reported. The adaptive ...

Browser extension malware infected 8.8M users in DarkSpectre attack

Browser extensions turned malicious after years of legitimate operation in DarkSpectre campaign affecting millions. The ...