The Hacker News

Malicious VSX Extension "SleepyDuck" Uses Ethereum to Keep Its Command Server Alive

Researchers uncover SleepyDuck RAT hidden in VSX extension, using Ethereum contracts to control infected hosts.

Open VSX rotates tokens used in supply-chain malware attack

The Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to publish malicious extensions in an attempted ...
CSO Online

Claude AI vulnerability exposes enterprise data through code interpreter exploit

Security researcher demonstrates how attackers can hijack Anthropic’s file upload API to exfiltrate sensitive information, ...

How I unlocked God Mode in Windows 11 - and the wonders I can do with it

Accessing all the settings and options in Windows 11 can be challenging, as they're spread across a variety of categories in both the Settings app and the Control Panel. An option called God Mode ...

Socure Expands RiskOS™ Platform with AI Suite of Agents and Assistants Designed to Automate and Accelerate Identity, Risk & Compliance Decisions

Socure, the AI-first platform for global identity and risk decisioning, today unveiled an expanded RiskOS AI Suite of ...
The Hacker News

Chrome Zero-Day Exploited to Deliver Italian Memento Labs' LeetAgent Spyware

The zero-day exploitation of a now-patched security flaw in Google Chrome led to the distribution of an espionage-related ...