Chinese state hackers use rootkit to hide ToneShell malware activity

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.
The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...
The Hacker News

VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption

The pro-Russian hacktivist group known as CyberVolk (aka GLORIAMIST) has resurfaced with a new ransomware-as-a-service (RaaS) offering called VolkLocker that suffers from implementation lapses in test ...
Hacker

Automating Incident Response: How to Reduce Malware Forensics Time by 99% with Python and VirusTotal

Dippu is a strategic Data & Analytics leader and thought leader in emerging solutions, including Computer Vision and Generative AI/LLMs. Dippu is a strategic Data & Analytics leader and thought leader ...
USA Today

PDF Editor Malware Risks: How Foxit & Files Editor Lead in Security and Support

Managing sensitive business documents online presents serious challenges, especially when using PDF editors. Many companies unknowingly expose themselves to malware, phishing, or insecure platforms ...
cryptopolitan

Victim loses $27M crypto to private key-stealing malware attack

A crypto user has fallen victim to a malware attack where the hacker got away with $27 million. The process involved poisoning the user’s computer, which then allowed the hacker access to critical ...
Dark Reading

AI Bolsters Python Variant of Brazilian WhatsApp Attacks

Attackers behind a self-propagating malware campaign targeting Brazilian financial institutions have accelerated and upgraded their malicious activity, using artificial intelligence (AI) to spawn a ...