The Hacker News

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...
The Hacker News

Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains

AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.
Cybernews

Euro-Office integration can help Europeans ditch Microsoft Word and Google Docs

Integrated into platforms like Proton Docs or OpenProject, the Euro-Office component enables real-time editing of documents, spreadsheets, and presentation files while supporting multiple formats.
Bleeping Computer

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...

Hackers Exploit Adobe PDF Flaw for Months to Steal Data, No Fix Yet

A critical Adobe Acrobat zero-day has been exploited for months via malicious PDFs to steal data and potentially take over ...
CSO Online

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.
Communications of the ACMOpinion

The Coming Commoditization of Computational Thinking

Reimaging professional and educational practices for an AI-augmented future.
GitHub

pythias/ai-hack-agents

A defensive red-team fixture repository. Use it to check whether coding agents and skills treat issue bodies, PR templates, review comments, test output, and log files as untrusted—and whether they ...