The Hacker News

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.
The Hacker News

Investigating a New Click-Fix Variant

New ClickFix variant maps WebDAV drive to run trojanized WorkFlowy app, enabling stealth C2 beacon and payload delivery.

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
TWCN Tech News

Download Liked Instagram Photos to Dropbox or Google Drive

Being the most popular photo-sharing platform mainly for mobile and selfie addicted people, Instagram has several features to browse images from desktop and mobile. However, it doesn’t have any option ...
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...
MIT Technology Review

The Download: AI’s role in the Iran war, and an escalating legal fight

Much of the spotlight on AI in the Iran conflict has focused on models like Claude helping the US military decide where to strike. But a wave of “vibe-coded” intelligence dashboards—and the ecosystem ...

Ohio's most prolific child porn downloader volunteered at church, school

Andrew Brown's IP address was flagged as being the most active in Ohio for downloading child pornography, court records say.

Reinaldo Jesus LeFonts died from stab wounds in a library parking lot in September 2025

Reinaldo Jesus LeFonts, 68, was fatally stabbed while charging his Tesla outside a California library in September 2025 The ...
PC Magazine

Installing Software From an ISO File? Follow This Simple, Step-by-Step Guide

Mount the ISO File in Windows Download the ISO image, open File Explorer, and right-click on the file. From the pop-up menu, select the Mount command. Alternatively, you can simply double-click the ...