资讯

Uncle Sam indicts alleged ransomware kingpin tied to $18B in damages

"Tymoshchuk is a serial ransomware criminal who targeted blue-chip American companies, healthcare institutions, and large ...

Shell to pay: Crims invade your PC with CastleRAT malware, now in C and Python

A team of data thieves has doubled down by developing its CastleRAT malware in both Python and C variants. Both versions spread by tricking users into pasting malicious commands through a technique ...
Security Boulevard7 天

NYU Scientists Develop, ESET Detects First AI-Powered Ransomware

Scientists at NYU developed a ransomware prototype that uses LLMs to autonomously to plan, adapt, and execute ransomware attacks. ESET researchers, not knowing about the NYU project, apparently ...
The Register on MSN6 小时

AI-powered penetration tool, an attacker's dream, downloaded 10K times in 2 months

In a report published today and shared with The Register, the AI security company's Regalado and fellow researcher Amanda ...
Bleeping Computer21 天

Colt confirms customer data stolen as Warlock ransomware auctions files

UK-based telecommunications company Colt Technology Services confirms that customer documentation was stolen as Warlock ransomware gang auctions files. The British telecommunications and network ...
Bleeping Computer21 天

Europol confirms $50,000 Qilin ransomware reward is fake

Europol has confirmed that a Telegram channel impersonating the agency and offering a $50,000 reward for information on two Qilin ransomware administrators is fake. The impostor later admitted it was ...
Securities.io5 小时

NPM Supply-Chain Attack: What Happened and How to Fix It

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...
Computer Weekly29 天

BlackSuit ransomware payment recovered in takedown operation

Over a million dollars’ worth of cryptocurrency assets laundered by or on behalf of the notorious BlackSuit ransomware gang – previously known as Royal – were seized ahead of a multinational takedown ...
manilatimes14 天

Ransomware: The dark side of AI

A CYBERSECURITY company has reported that artificial intelligence (AI) is enabling hackers to dramatically speed up their operations. The firm, Palo Alto Networks, said that what used to take ...
CSO Online2 天

When AI nukes your database: The dark side of vibe coding

As developers lean on Copilot and GhostWriter, experts warn of insecure defaults, hallucinated dependencies, and attacks that ...
InfoWorld22 天

PyApp: An easy way to package Python apps as executables

Written in Rust, the PyApp utility wraps up Python programs into self-contained click-to-run executables. It might be the easiest Python packager yet. Every developer knows how hard it is to ...
The Hacker News14 天

Researchers Find VS Code Flaw Allowing Attackers to Republish Deleted Extensions Under Same ...

VS Code flaw lets attackers reuse deleted extension names, enabling ransomware payload delivery and supply chain risks.