The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Experts details PeckBirdy, a JavaScript C2 framework used since 2023 by China-aligned attackers to spread malware via fake ...

Watch out - this devious new Android malware clicks on hidden browser ads to put you at risk

Since the fake clicks can only be programmed and automated, ad networks turned to behavioral analytics for defense. When the clicks happen too fast, not random enough, or similar, they are dismissed ...
Dark Reading

'Contagious Interview' Attack Now Delivers Backdoor Via VS Code

Once trust is granted to the repository's author, a malicious app executes arbitrary commands on the victim's system with no ...

New Android malware uses AI to click on hidden browser ads

A new family of Android click-fraud trojans leverages TensorFlow machine learning models to automatically detect and interact ...
SecurityWeek

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

North Korean hackers target macOS developers with malware hidden in Visual Studio Code task configuration files.
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.
TMCnet

Kubernetes Established as the De Facto 'Operating System' for AI as Production Use Hits 82% in 2025 CNCF Annual Cloud Native Survey

As Kubernetes becomes the platform of choice for AI workloads and organizations scale their deployments, the next wave of ...
How-To Geek on MSN

Node 25.4.0 solves the import require mess and adds more features

The update smooths out mixed module workflows.
InfoQ

Microsoft Share Update on TypeScript 7

Microsoft's TypeScript 7, codenamed Project Corsa, transforms the compiler with a complete rewrite in Go, achieving up to 10x faster builds and reduced memory usage. With strict mode enabled by ...