The Hacker News

China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware

China-linked Evasive Panda used DNS poisoning to deliver the MgBot backdoor in targeted espionage attacks from 2022 to 2024.
The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...

New SantaStealer malware is after your passwords and crypto

New SantaStealer malware reportedly threatens holiday shoppers with password theft. This Christmas-themed info-stealer ...
InfoWorld

WhatsApp API worked exactly as promised, and stole everything

Malicious npm package posing as a WhatsApp Web API library operated for months as a functional dependency while stealing ...
cryptopolitan

Victim loses $27M crypto to private key-stealing malware attack

A crypto user has fallen victim to a malware attack where the hacker got away with $27 million. The process involved poisoning the user’s computer, which then allowed the hacker access to critical ...
Dark Reading

AI Bolsters Python Variant of Brazilian WhatsApp Attacks

Attackers behind a self-propagating malware campaign targeting Brazilian financial institutions have accelerated and upgraded their malicious activity, using artificial intelligence (AI) to spawn a ...
IEEE

Detecting Python Malware in the Software Supply Chain with Program Analysis

Abstract: The frequency of supply-chain attacks has reached unprecedented levels, amounting to a growing concern about the security of open-source software. Existing state-of-the-art techniques often ...
Greek City Times

New Android Malware “Sturnus” Can Read Your Signal, Telegram, and WhatsApp Messages – Even Though Encryption Is Not Broken

A highly stealthy new Android banking trojan named Sturnus has been discovered that can silently read every message you send or receive on Signal, Telegram, and WhatsApp — despite their end-to-end ...