The Hacker News

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

CPUID hacked to deliver malware via CPU-Z, HWMonitor downloads

Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve ...
Onrec

7 Best Cybersecurity Tools for Remote Recruitment Teams: Guard Candidate PII

Start with TorGuard, 1Password, and Okta. These three lock down networks, passwords, and identity, the entry points attackers ...

How thousands of sensitive LAPD files got leaked online — and what happens next

A data breach at the city attorney's office led to a massive cache of LAPD files being dumped online. Here's what we know ...

Microsoft OneDrive users report mysterious spam files that won't go away

At least a few hundred users on Reddit and Microsoft's support forums began reporting that their OneDrive folders were ...
The Hacker News

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.

These two huge PC performance app downloads have been infected by a virus

If you've downloaded CPU-Z or HWMonitor recently, you might want to double check the files you've used, as they could be infected.

You can read PDFs and articles on your Kindle: How to send all kinds of files to your device

You can read PDFs and articles on your Kindle: How to send all kinds of files to your device ...

Microsoft removes Support and Recovery Assistant from Windows

Microsoft has deprecated and removed the Support and Recovery Assistant (SaRA) command-line utility from all in-support ...

This clever Shortcut lets you download latest Artemis II images directly from NASA [U: updated shortcut]

Download full high quality Artemis II images with this easy to install and clever shortcut directly from NASA to your photo ...
Microsoft

Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...
CSO Online

North Korean hackers abuse LNKs and GitHub repos in ongoing campaign

The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command and control to ...