News

The Hacker News1d
CERT-UA Discovers LAMEHUG Malware Linked to APT28, Using LLM for Phishing Campaign
APT28 targets Ukrainian government officials with a phishing campaign delivering LAMEHUG malware, utilizing Alibaba Cloud’s ...
The Hacker News5d
North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign
North Korean hackers continue attacking open-source software via npm packages. 67 new malicious packages with XORIndex Loader ...
Using 'Florida' as a password? So are nearly 900,000 other people: Avoid getting hacked
Nearly 900,000 passwords exposed through data breaches include "Florida," a common name that makes them easier to guess or hack. Here's what not to use.
Government Technology4d
Texas A&M, Blinn College Host Cybersecurity Camp for High Schoolers
Funded by a grant from the Department of Defense, a cybersecurity camp in Texas allows students to take part in exercises ...
These are our favorite cyber books on hacking, espionage, crypto, surveillance, and more
Pop culture has embraced hackers with hit TV shows like Mr. Robot, and movies like Leave The World Behind. But perhaps the ...
GitHub abused to distribute payloads on behalf of malware-as-a-service
The use of GitHub gave the malware-as-a-service (MaaS) a reliable and easy-to-use platform that’s greenlit in many enterprise ...
LameHug malware uses AI LLM to craft Windows data-theft commands in real-time
A novel malware family named LameHug is using a large language model (LLM) to generate commands to be executed on compromised ...
Infosecurity Magazine1d
New “LameHug” Malware Deploys AI-Generated Commands
Ukraine’s CERT-UA has identified a new AI-powered malware, dubbed “LameHug,” which executes commands on compromised Windows ...
Hackers Are Finding New Ways to Hide Malware in DNS Records
Newly published research shows that the domain name system—a fundamental part of the web—can be exploited to hide malicious ...
CSO Online1d
Novel malware from Russia’s APT28 prompts LLMs to create malicious Windows commands
Recent attacks by the state-run cyberespionage group against Ukrainian government targets included malware capable of ...
ChatGPT’s new AI agent can browse the web and create PowerPoint slideshows
OpenAI launched ChatGPT Agent, a new feature that lets the company's AI assistant complete multi-step tasks by controlling ...
CSO Online6d
Putting AI-assisted ‘vibe hacking’ to the test
Valuable tools for experienced attackers and researchers, LLMs are not yet capable of creating exploits at a prompt, ...