VMware ESXi zero-days likely exploited a year before disclosure

Chinese-speaking threat actors used a compromised SonicWall VPN appliance to deliver a VMware ESXi exploit toolkit that seems to have been developed more than a year before the targeted ...

Update your MyAsus software now because there's a fix for a nasty hack that could easily ruin your day

You can also manually prompt it to get the latest update via the Microsoft Store by booting it up and finding the app. The ...
Cryptopolitan on MSN

Malicious Bitcoin npm packages spread NodeCordRAT malware before takedown

Researchers at Zscaler ThreatLabz have found three malicious Bitcoin npm packages that are meant to implant malware named ...

ChatGPT falls to new data-pilfering attack as a vicious cycle in AI continues

There’s a well-worn pattern in the development of AI chatbots. Researchers discover a vulnerability and exploit it to do ...

900,000 Users Hit as Malicious Chrome Extensions Steal ChatGPT, DeepSeek Chats

OX Security reveals how malicious Chrome extensions exposed AI chats from ChatGPT and DeepSeek, silently siphoning sensitive ...
The Hacker News

Black Cat Behind SEO Poisoning Malware Campaign Targeting Popular Software Searches

Black Cat cybercrime group used SEO poisoning and fake software downloads to infect nearly 278,000 systems in China with data ...
SecurityWeek

Chrome Extensions With 900,000 Downloads Caught Stealing AI Chats

Two malicious Chrome extensions with over 900,000 downloads were exfiltrating browser data and conversations with ChatGPT and ...

Founder of spyware maker pcTattletale pleads guilty to hacking and advertising surveillance software

Bryan Fleming, the founder of hacked stalkerware company pcTattletale, pleaded guilty to federal charges linked to the ...