How to spot and stop everyday cyberattacks

It never stops. Attackers continue to exploit new vulnerabilities and tricks to hack accounts or infiltrate devices. To stay ...
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

He Leaked the Secrets of a Southeast Asian Scam Compound. Then He Had to Get Out Alive

A source trapped inside an industrial-scale scamming operation contacted me, determined to expose his captors’ crimes—and ...
GovInfoSecurity

Telnet Flaw: 800,000 Servers at Risk Amid Active Attacks

Hackers are on the hunt for open telnet ports in servers after discovering that a version of legacy client-server application ...
CCN on MSN

Binance logins among 149 million credentials exposed in infostealer malware data dump — here’s what you should know

This was not a single company breach, the credentials were harvested from millions of infected user devices using infostealer ...

OpenAI spills technical details about how its AI coding agent works

On Friday, OpenAI engineer Michael Bolin published a detailed technical breakdown of how the company’s Codex CLI coding agent ...
The Hacker News

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide ...

WinRAR path traversal flaw still exploited by numerous hackers

Multiple threat actors, both state-sponsored and financially motivated, are exploiting the CVE-2025-8088 high-severity ...

Dozens of nudify apps found on Google and Apple’s app stores

TTP identified 55 apps on the Google Play Store and 48 on Apple’s App Store that can “digitally remove the clothes from women ...

How an N.J. man helped funnel millions to North Korea’s nuclear weapons programs

When North Korean scammers set out to steal U.S. money to fund the country’s nuclear weapons program, they needed Americans willing to help. Enter Zhenxing “Danny” Wang, from New Jersey. The scammers ...

From Cipher to Fear: The psychology behind modern ransomware extortion

Modern ransomware has shifted from encryption to psychological extortion that exploits fear, liability, and exposure. Flare shows how today's ransomware groups weaponize stolen data and pressure ...