The Hacker News

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

North Korea-linked ScarCruft uses fake Microsoft Account alerts and ZIP files to deliver NarwhalRAT, a Python RAT built for ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
InfoWorld

Meet Hades: The malware that lies to AI security agents

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

OpenAI、Codexが作業を見て覚える「Record& Replay」

OpenAIは18日(米国時間)、AIコーディングツール「Codex」に新機能「Record & ...
TechNewsWorldOpinion

AI Can Identify Threats. It Can’t Own Security Decisions

AI can identify threats and speed security analysis, but risk scoring alone cannot determine what software should be allowed ...

デジタル庁・首都圏の教育委員会が後援、首都圏の高校生向け夏の ...

[一般社団法人42Tokyo]6/15(月)~8/12(水)まで参加者募集中!一般社団法人42 Tokyo(本社:東京都新宿区、代表理事:坂之上洋子、以下「42 Tokyo」)は、2026年8月19日(水)にTokyo Innovation ...
WeLiveSecurity

OceanLotus: From external espionage to domestic targeting

Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...