The Hacker News

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...
Hackaday

Battery Tester Outperforms Cheaper Options

Batteries are notoriously difficult pieces of technology to deal with reliably. They often need specific temperatures, charge ...
Hackaday

Reverse-Engineering The Holy Stone H120D Drone

There are plenty of drones (and other gadgets) you can buy online that use proprietary control protocols. Of course, ...
SecurityWeek

TeamPCP Moves From OSS to AWS Environments

The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

Major compromise of the telnyx PyPI library could put millions of users at risk

TeamPCP strikes again, with almost identical code to LiteLLM.
SecurityWeek

Extortion Group Claims It Hacked AstraZeneca

The Lapsus$ extortion group has claimed the theft of 3GB of data from AstraZeneca, including internal code repositories and ...
Bleeping Computer

TeamPCP deploys Iran-targeted wiper in Kubernetes attacks

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran. The threat actor is responsible for the recent ...
GitHub

export-to-sqlite.py

# version 2, as published by the Free Software Foundation. # $ sudo apt-get install python3-pyside.qtsql libqt4-sql-psql # $ sudo apt-get install python-pyside2.qtsql libqt5sql5-psql # $ sudo apt-get ...
GitHub

A Python-based penetration testing toolkit that includes a port scanner to detect open ...

Penetration testing is an important part of cybersecurity that involves identifying vulnerabilities in systems, networks, and applications before attackers can exploit them. Ethical hackers and ...