The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
Infosecurity Magazine

Lookalike npm Package Hides a Multi-Stage Windows RAT

A malicious npm package has been caught impersonating one of the JavaScript ecosystem's most widely used build tools. The ...

Microsoft fixes AutoGen Studio flaw that enabled code execution

A vulnerability chain dubbed AutoJack in Microsoft's AutoGen Studio interface for prototyping AI agents could let attackers ...
TWCN Tech News

Surface RTX Spark Dev Box Feature, Price Specs, Where to buy, Release date

At Microsoft Build in June 2026, Microsoft unveiled its most powerful desktop PC yet: the Surface RTX Spark Dev Box. It is a compact, small-form-factor desktop PC that is built specifically for ...

Kestra: Ops automation beyond CI/CD

CI/CD pipelines are optimized for code deployments. Long-running operational processes and self-service workflows can be ...
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...

Parallels RAS Expands Virtual Desktop Flexibility with New Hypervisor-Agnostic Custom ...

In addition to the Custom Provider Framework, the latest version of Parallels RAS introduces expanded platform integrations, enhanced security controls, and user experience improvements designed that ...
The Hacker News

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline

Cato Networks tracked Poisson using OpenSSH and Tailscale to maintain access after Havoc C2 outage in a 33-day intrusion.