🔥PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux
Cybersecurity researchers have discovered three packages on the Python Package Index (PyPI) repository that are designed to stealthily deliver a previously unknown malware family called ZiChatBot on
🖥️Cybersécurité : en Guadeloupe, le mot de passe reste la première faille face aux cyberattaques
À l’occasion de la Journée mondiale du mot de passe du 6 mai, les experts tirent la sonnette d’alarme. Aux Antilles, la hausse des cyberattaques …
🔥vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exploited by bad actors to break out of the sandbox and execute arbitrary code on susceptible...
🖥️Russie : plongée dans les secrets de l’université Bauman de Moscou, qui forme les meilleurs hackeurs
Au sein de l’académie militaire de la prestigieuse université technique Bauman à Moscou, un département secret prépare les étudiants à intégrer le …
🖥️Les États-Unis et la Chine envisagent des discussions sur l’IA lors d’un sommet
Investing.com - Washington et Pékin envisagent de lancer des discussions officielles sur l’intelligence artificielle, a rapporté le Wall Street …
📰A DOD contractor’s API flaw exposed military course data and service member records
Researchers say Schemata’s platform exposed names, emails, base assignments, and course materials before the company patched the issue and contacted government authorities. The post A DOD...
🔥Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks
Cybersecurity researchers have exposed a new Mirai-derived botnet that self-identifies as xlabs_v1 and targets internet-exposed devices running Android Debug Bridge (ADB) to enlist them in a network...
📰A critical Palo Alto PAN-OS zero-day is being exploited in the wild
The vendor hasn’t released a patch for the vulnerability or described the scope and objective of confirmed attacks. The post A critical Palo Alto PAN-OS zero-day is being exploited in the wild...
🖥️« Soit on perd, soit on perd » : avec Mythos, les entreprises françaises redoutent un « déluge » de cyberattaques
Une note du Campus Cyber alerte sur les risques majeurs de cyberattaques liés à l'IA Mythos d'Anthropic et à ses dérivés éventuels. Ce modèle, …
🔥MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack
The Iranian state-sponsored hacking group known as MuddyWater (aka Mango Sandstorm, Seedworm, and Static Kitten) has been attributed to a ransomware attack in what has been described as a "false...
🔥The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Open
For nearly 20 years, we at The Hacker News have mostly told scary stories about cyberspace — big hacks, broken systems, and new threats. But behind every headline, there’s a quieter, better...
🖥️Un simple « allô » peut suffire : c’est quoi l’arnaque aux appels silencieux, en plein essor avec l’intelligence artificielle ?
Derrière certains appels silencieux se cacherait une nouvelle technique utilisée par des cybercriminels pour identifier les numéros actifs et …
📰CISA wants critical infrastructure to operate ‘weeks to months’ in isolation during conflict
The agency will begin targeted assessments meant to help critical infrastructure entities operate while disconnecting OT networks from IT and third-party vendors. The post CISA wants critical...
📰CISA boasts AI automation improvements to threat analysis, mission support
Cybersecurity and Infrastructure Security Agency officials said it’s proven a boon in numerous areas, but there are some hurdles to adoption, still. The post CISA boasts AI automation improvements...
📰Latvian national sentenced for ransomware attacks run by former Conti leaders
Deniss Zolotarjovs was mostly tasked with putting pressure on the Russia-based crew’s victims, in one case leaking hundreds of children’s health records. The post Latvian national sentenced for...
🔥PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux
Cybersecurity researchers have discovered three packages on the Python Package Index (PyPI) repository that are designed to stealthily deliver a previously unknown malware family called ZiChatBot on
🖥️Cybersécurité : en Guadeloupe, le mot de passe reste la première faille face aux cyberattaques
À l’occasion de la Journée mondiale du mot de passe du 6 mai, les experts tirent la sonnette d’alarme. Aux Antilles, la hausse des cyberattaques …
🔥vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exploited by bad actors to break out of the sandbox and execute arbitrary code on susceptible...
🖥️Russie : plongée dans les secrets de l’université Bauman de Moscou, qui forme les meilleurs hackeurs
Au sein de l’académie militaire de la prestigieuse université technique Bauman à Moscou, un département secret prépare les étudiants à intégrer le …
🖥️Les États-Unis et la Chine envisagent des discussions sur l’IA lors d’un sommet
Investing.com - Washington et Pékin envisagent de lancer des discussions officielles sur l’intelligence artificielle, a rapporté le Wall Street …
📰A DOD contractor’s API flaw exposed military course data and service member records
Researchers say Schemata’s platform exposed names, emails, base assignments, and course materials before the company patched the issue and contacted government authorities. The post A DOD...
🔥Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks
Cybersecurity researchers have exposed a new Mirai-derived botnet that self-identifies as xlabs_v1 and targets internet-exposed devices running Android Debug Bridge (ADB) to enlist them in a network...
📰A critical Palo Alto PAN-OS zero-day is being exploited in the wild
The vendor hasn’t released a patch for the vulnerability or described the scope and objective of confirmed attacks. The post A critical Palo Alto PAN-OS zero-day is being exploited in the wild...
🖥️« Soit on perd, soit on perd » : avec Mythos, les entreprises françaises redoutent un « déluge » de cyberattaques
Une note du Campus Cyber alerte sur les risques majeurs de cyberattaques liés à l'IA Mythos d'Anthropic et à ses dérivés éventuels. Ce modèle, …
🔥MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack
The Iranian state-sponsored hacking group known as MuddyWater (aka Mango Sandstorm, Seedworm, and Static Kitten) has been attributed to a ransomware attack in what has been described as a "false...
🔥The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Open
For nearly 20 years, we at The Hacker News have mostly told scary stories about cyberspace — big hacks, broken systems, and new threats. But behind every headline, there’s a quieter, better...
🖥️Un simple « allô » peut suffire : c’est quoi l’arnaque aux appels silencieux, en plein essor avec l’intelligence artificielle ?
Derrière certains appels silencieux se cacherait une nouvelle technique utilisée par des cybercriminels pour identifier les numéros actifs et …
📰CISA wants critical infrastructure to operate ‘weeks to months’ in isolation during conflict
The agency will begin targeted assessments meant to help critical infrastructure entities operate while disconnecting OT networks from IT and third-party vendors. The post CISA wants critical...
📰CISA boasts AI automation improvements to threat analysis, mission support
Cybersecurity and Infrastructure Security Agency officials said it’s proven a boon in numerous areas, but there are some hurdles to adoption, still. The post CISA boasts AI automation improvements...
📰Latvian national sentenced for ransomware attacks run by former Conti leaders
Deniss Zolotarjovs was mostly tasked with putting pressure on the Russia-based crew’s victims, in one case leaking hundreds of children’s health records. The post Latvian national sentenced for...