The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Lawful access bill could create vulnerabilities for hackers, experts warn

Foreign intelligence services with malevolent intent could also exploit intercept infrastructure, tech and legal specialists ...
Việt Báo

3.5 billion Google Chrome users receive urgent warning.

Google has just released an emergency Chrome update to patch two dangerous zero-day vulnerabilities being exploited by ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
Cyber Daily

Australia applauds EU sanctions targeting Chinese and Iranian hackers

Two Chinese companies, a pair of Chinese individuals, and one Iranian entity have been sanctioned for cyber attacks on countries in the European Union.
Cyber Daily

Update: Stryker hackers claim to have wiped 12 petabytes of company data

Iran-linked Handala hacking group releases more details of its attack on global medical technology firm as the company continues to restore its systems.
Cybernews

Threat actors linked to Russia target Ukrainian entities with new backdoor

The campaign, observed in February 2026, has been assessed to share overlaps with a prior campaign mounted by Laundry Bear, a group tracked by Microsoft as Void Blizzard.
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
WinBuzzer

GitHub: Glassworm Hides Malware in Invisible Unicode Across 151+ Repos

The Glassworm campaign has compromised over 151 GitHub repositories and npm packages using invisible Unicode payloads that evade standard code review.