The Hacker News

New VVS Stealer Malware Targets Discord Accounts via Obfuscated Python Code

VVS Stealer is a Python-based malware sold on Telegram that steals Discord tokens, browser data, and credentials using heavy ...
The Hacker News

GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection

GootLoader malware is abusing malformed ZIP archives that bypass common tools like WinRAR & deliver JavaScript payloads via ...

Gootloader now uses 1,000-part ZIP archives for stealthy delivery

The Gootloader malware, typically used for initial access, is now using a malformed ZIP archive designed to evade detection ...
InfoWorld

From typos to takeovers: Inside the industrialization of npm supply chain attacks

A dramatic spike in npm-focused intrusions shows how attackers have shifted from opportunistic typosquatting to systematic, credential-driven supply chain compromises — exploiting CI systems, ...
Microsoft

Inside RedVDS: How a single virtual desktop provider fueled worldwide cybercriminal operations

Microsoft’s investigation into RedVDS services and infrastructure uncovered a global network of disparate cybercriminals ...
TechJuice

Cybercriminals Weaponize WhatsApp to Spread New Banking Malware

A WhatsApp worm is spreading Astaroth banking malware, automating infections and escalating financial cybercrime risks.
Opinion
CSO OnlineOpinion

The 2 faces of AI: How emerging models empower and endanger cybersecurity

AI helps security teams move faster — but it’s also helping attackers do the same, turning cybersecurity into a race of machines versus machines.

AI and the Future of Work: 5 Predictions for 2026

Experts predict 2026 will bring less AI hype and more governance, delayed enterprise spending, AI moving into OT, smarter ...
Royal United Services Institute

Responding to Russian Sabotage Financing

Financing is an important yet overlooked element of Russian sabotage in Europe: it can act as both a facilitator and a tool ...
Scared Of on MSN

Dark truth about digital skimming: Why your identity is at risk anywhere

Every time you shop online, fill out a form, or check out at your favorite website, invisible code might be watching.