The Hacker News

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Pakistan-aligned APT36 and SideCopy target Indian defense and government entities using phishing-delivered RAT malware across Windows and Linux system ...
Morning Overview on MSN

Wild supply-chain hack hits popular open-source coding app tied to China

A quiet compromise of a popular open-source coding editor has turned into one of the most unsettling software supply-chain ...

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...
HackadayOpinion

How Vibe Coding Is Killing Open Source

Does vibe coding risk destroying the Open Source ecosystem? According to a pre-print paper by a number of high-profile ...
Morning Overview on MSN

Researchers warn open-source AI is a gold mine for cybercriminals

Open models were supposed to democratize artificial intelligence. Instead, security researchers now say they are handing cybercriminals industrial grade tools that can be downloaded, modified, and ...
The Security Ledger

Technology’s “Upside Down”? Software Supply Chain

Stranger Things concept of the “Upside Down” is a useful way to think about the risks lurking in the software we all rely on.
The Conversation

Hacking the grid: How digital sabotage turns infrastructure into a weapon

Saman Zonouz receives funding from the Department of Energy Office of Cybersecurity, Energy Security, and Emergency Response (DOE CESER) and the National Science Foundation (NSF). The darkness that ...
Dark Reading

DPRK Actors Deploy VS Code Tunnels for Remote Hacking

A spear-phishing campaign by North Korean actors is abusing a legitimate feature of Microsoft Visual Studio (VS) Code to gain full remote control of targeted systems. In the campaign, discovered by ...
Android

Target Hack Claims Surface as Source Code Allegedly Listed for Sale Online

Hackers claim to be selling internal Target source code after posting samples online. The data allegedly includes developer files and system tools of a US retailer. This raises concerns about ...
Bleeping Computer

Target employees confirm leaked source code is authentic

Multiple current and former Target employees have reached out to BleepingComputer to confirm that the source code and documentation shared by a threat actor online match real internal systems. A ...
Ars Technica

Even Linus Torvalds is trying his hand at vibe coding (but just a little)

Linux and Git creator Linus Torvalds’ latest project contains code that was “basically written by vibe coding,” but you shouldn’t read that to mean that Torvalds is embracing that approach for ...
GizChina

Sony PS5 ROM key leaked: BootROM code may make hacking easier

A new report says a core ROM key for the Sony PS5 is now public. This key is part of the BootROM code that runs first when the console starts. The code checks if the boot file is real before the rest ...