The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Experts details PeckBirdy, a JavaScript C2 framework used since 2023 by China-aligned attackers to spread malware via fake ...
The Hacker News

Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution

Researchers disclosed two n8n vulnerabilities that let authenticated users bypass JavaScript and Python sandboxes to run ...

Hackers are using LLMs to build the next generation of phishing attacks

What if a phishing page was generated on the spot?

Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...
SecurityWeek

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

North Korean hackers target macOS developers with malware hidden in Visual Studio Code task configuration files.

Initial access hackers switch to Tsundere Bot for ransomware attacks

A prolific initial access broker tracked as TA584 has been observed using the Tsundere Bot alongside XWorm remote access ...

There’s a hacker house on a quiet street in Gulfport — and it’s powering an AI venture studio

The hacker house is an attempt to recreate the intensity and immersion more commonly associated with the West Coast, in this ...

Microsoft Virtual Studio Code is being targeted by North Korean hackers

The contagious interview campaign continues.

Hacker Murphy LLP names new managing partner

The firm is also moving its HQ to a new location. © 2026 American City Business Journals. All rights reserved. Use of and/or ...
InfoWorld

Unplugged holes in the npm and yarn package managers could let attackers bypass defenses against Shai-Hulud

A researcher at Koi Security says the two key platforms have not plugged the vulnerabilities enabling the worm attacks, and ...
Infosecurity Magazine

Over 80% of Ethical Hackers Now Use AI

The vast majority (82%) of ethical hackers now use AI in their workflows, enabling companies to benefit from faster findings, more assessments, broader security coverage and higher quality reporting, ...