The Hacker News

SilentSync RAT Delivered via Two Malicious PyPI Packages Targeting Python Developers

Zscaler reveals SilentSync remote access trojan hidden in two malicious PyPI Python packages, risking browser data theft and ...
The Hacker News

Chinese TA415 Uses VS Code Remote Tunnels to Spy on U.S. Economic Policy Experts

The campaign, per Proofpoint, mainly focused on individuals who specialized in international trade, economic policy, and U.S.
CSO Online

CobaltStrike’s AI-native successor, ‘Villager,’ makes hacking too easy

The new AI-native framework, freely available online, could make advanced cyberattacks faster, easier, and more accessible ...

'WhiteCobra' floods VSCode market with crypto-stealing extensions

A threat actor named WhiteCobra has targeting VSCode, Cursor, and Windsurf users by planting 24 malicious extensions in the ...
Every

Launch Day Lies—Day

Day two tells the truth. On day two, novelty wears off and social pressure disappears. People either reach for your tool ...
Cybernews

Vibe coders lose crypto after installing extensions on popular marketplaces

Programmers using popular AI tools (Cursor, Windsurf, VSCode) get their crypto stolen by hackers, who infiltrate extension marketplaces.
Cybernews

Custom-built vs. off-the-shelf hosting panels – which approach scales better for developers?

Compare server hosting panels: off-the-shelf for speed, custom-built for control. Learn which scales best for your apps and ...