Dark Reading

Malicious Next.js Repos Target Developers Via Fake Job Interviews

Linked to North Korean fake job-recruitment campaigns, the poisoned repositories are aimed at establishing persistent C2 ...
The Next Web

When malware learns to think

PromptSpy, discovered by ESET, is the first known Android malware to integrate generative AI into its execution flow.
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

ASD releases Azul open-source malware analysis tool

Sample files for Azul are kept in a Simple Storage Service (S3) compatible binary large object (blob) store, and processed ...