The Hacker News

AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites

Microsoft uncovered 150+ AI-assisted cryptojacking domains using fake software downloads to deploy persistent malware.
Microsoft

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...
SecurityWeek

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals

Researchers discovered a remote code execution vulnerability and cybercriminals are using its reputation to deliver malware. Google Antigravity’s increasing popularity has brought the development ...
TechRepublic

Fake Google Antigravity Installer Can Steal Accounts in Minutes

Fake Antigravity downloads are enabling fast account takeovers using hidden malware and stolen session cookies. A fake Google Antigravity download is exposing user accounts to compromise within ...
Infosecurity-magazine.com

STX RAT Targets Finance Sector With Advanced Stealth Tactics

A previously undocumented remote access trojan (RAT) known as STX RAT has been identified following an attempted deployment in a financial services environment in late February 2026. The malware, ...
Security Boulevard

Latest Xloader Obfuscation Methods and Network Protocol

Introduction Xloader is an information stealing malware family that evolved from Formbook and targets web browsers, email clients, and File Transfer Protocol (FTP) applications. Additionally, Xloader ...
Bleeping Computer

Fake ‘One Battle After Another’ torrent hides malware in subtitles

A fake torrent for Leonardo DiCaprio’s 'One Battle After Another' hides malicious PowerShell malware loaders inside subtitle files that ultimately infect devices with the Agent Tesla RAT malware. The ...
winbuzzer.com

How to Map a Network Drive in Windows 11 and Windows 10

If you frequently access files on a network-attached storage (NAS) device, a home server, or a shared folder on another computer, constantly navigating to it can be tedious. Mapping a network drive ...
The Hacker News

New EVALUSION ClickFix Campaign Delivers Amatera Stealer and NetSupport RAT

Cybersecurity researchers have discovered malware campaigns using the now-prevalent ClickFix social engineering tactic to deploy Amatera Stealer and NetSupport RAT. The activity, observed this month, ...
Bleeping Computer

XWorm malware resurfaces with ransomware module, over 35 plugins

New versions of the XWorm backdoor are being distributed in phishing campaigns after the original developer, XCoder, abandoned the project last year. The latest variants, XWorm 6.0, 6.4, and 6.5, ...
heise online

PowerShell 2.0 removed from Windows 11 and Windows Server from August 2025

Windows without PowerShell 2.0: Microsoft removes the version still included for compatibility for good. It has long been considered obsolete. PowerShell 2.0 is finally history: The version of the ...