Russian hackers turn Kazuar backdoor into modular P2P botnet

The Russian hacker group Secret Blizzard has developed its long-running Kazuar backdoor into a modular peer-to-peer (P2P) ...
Decrypt

Shai-Hulud: What to Know About the Malware Spreading Through Software Pipelines

The Shai-Hulud supply-chain malware campaign is exploiting the automated systems developers trust to publish software safely.
Microsoft

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Hulud payload to steal CI/CD secrets from Linux-based automation environments. The malware executes during npm install and ...
CNET

AI Detectors Don't Work. These Human Tricks Do

Rachel is a freelancer based in Echo Park, Los Angeles and has been writing and producing content for nearly two decades on subjects ranging from tech to fashion, health and lifestyle to entertainment ...
The Hacker News

ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories

A token leaks. A bad package slips in. A login trick works. An old tool shows up again. At first, it feels like the usual mess. Then you see the pattern: attackers are not always breaking in. They are ...
Cfr.org

Iran’s Regional Armed Network

Iran’s web of armed partners such as Hezbollah and the Houthis serves to strengthen its influence in the Middle East and could pose a significant threat to the United States and U.S. allies in the ...