The Hacker News

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls ...
DataBreachToday

Freight Hacker Wields Code-Signing Service to Evade Defenses

Cargo-stealing hackers have a new trick up their sleeve: using a third-party code-signing service makes their remote ...
Bitdefender

AgingFly malware hits local authorities and hospitals in Ukraine

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

Windows Recall still has a side door into your private PC history

Windows Recall's database may be better protected now, but a new proof of concept suggests the data path after sign in still creates privacy risks for Windows 11 users.

Unpatched Microsoft Defender flaw lets hackers gain admin access

A security researcher has published a working exploit for a Microsoft Defender security flaw that affects Windows 10, 11, and ...

Microsoft’s Windows Recall still allows silent data extraction

A cybersecurity researcher says Recall’s redesigned security model does not stop same-user malware from accessing plaintext ...