The Hacker News

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide ...
The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Experts details PeckBirdy, a JavaScript C2 framework used since 2023 by China-aligned attackers to spread malware via fake ...
Decrypt

North Korea–Linked Hackers Use Deepfake Video Calls to Target Crypto Workers

Hackers are using AI-generated video calls to impersonate trusted contacts and trick crypto workers into installing malware.

Saudi satirist hacked with Pegasus spyware wins damages in court battle

The London High Court awarded the London-based satirist and human rights activist Ghanem Al-Masarir more than £3 million, ...

Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...

9 Future Tech Skills That Will Stay in High Demand Through 2030 and Beyond

Future tech skills and in-demand IT skills through 2030 include AI, cybersecurity, cloud, and blockchain, guiding career growth in evolving tech landscapes.
InfoQ

Virtual Panel - AI in the Trenches: How Developers Are Rewriting the Software Process

This virtual panel brings together engineers, architects, and technical leaders to explore how AI is changing the landscape ...

Hackers use OpenAI’s invite feature to trick users into giving private data

Hackers use OpenAI’s invite feature to trick users into giving sensitive information and stealing money unnoticed ...

Konni hackers target blockchain engineers with AI-built malware

The North Korean hacker group Konni (Opal Sleet, TA406) is using AI-generated PowerShell malware to target developers and engineers in the blockchain sector.
Dark Reading

Swipe, Plug-in, Pwned: Researchers Find New Ways to Hack Vehicles

Security researchers exploited dozens of vulnerabilities in vehicle infotainment systems and EV chargers in the latest ...
Cybernews

Pentest tools left online are allowing hackers to exploit Fortune 500 firms

Hackers are exploiting intentionally vulnerable penetration testing and security training apps that have been mistakenly exposed to the public internet, giving them access to cloud environments ...

This new LinkedIn phishing scam is targeting executives

Here's what to look out for ...