Edge users beware — this malicious extension can break out of the sandbox and install ransomware

Researchers from Zscaler found a new malware campaign dubbed Edgecution.
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.

OpenAI expands Daybreak with Patch the Planet and full GPT-5.5-Cyber release

OpenAI Group PBC today expanded its Daybreak cybersecurity program with a new open-source patching initiative called Patch ...
The Hacker News

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Proofpoint says UNK_DeadDrop sent 250+ phishing emails to nearly 100 firms, using GitHub and VS Code lures to steal credentials and wallet data.
Dark Reading

UNC6692 Combines Social Engineering, Malware, Cloud Abuse

A new threat actor is combining social engineering techniques, abuse of legitimate cloud infrastructure, and custom malware together to create what appears to be novel attack chain. Google Threat ...
LinkedIn

Building and Deploying Python Lambda Layers the Right Way

Step 3 — Clean up before zipping After installing, your python/ folder will contain metadata and cache files that Lambda doesn't need. Stripping them out reduces your ZIP size and keeps you safely ...
LinkedIn

CICS/COBOL to Python Flask: A Hands-On Mainframe Modernization Project Anyone Can Run

There's a line that gets quoted constantly in mainframe circles: roughly 95% of ATM transactions, most airline reservations, and the majority of insurance claims still flow through mainframe systems ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

In January 2026, Microsoft Defender Experts identified a new evolution in the ongoing ClickFix campaign. This updated tactic deliberately crashes victims’ browsers and then attempts to lure users into ...
archive

Automate the boring stuff with Python : practical programming for total beginners

remove-circle Internet Archive's in-browser bookreader "theater" requires JavaScript to be enabled. It appears your browser does not have it turned on. Please see ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

Infostealer threats are rapidly expanding beyond traditional Windows-focused campaigns, increasingly targeting macOS environments, leveraging cross-platform languages such as Python, and abusing ...
GitHub

A makeshift python tool that generates TCX files from Huawei HiTrack files.

This project is now archived. It has been succedded by Hitrava which performs the same job but better. N.B. Huawei have caught onto us, and you now need a rooted phone to be able to use this method.
Dark Reading

AI Bolsters Python Variant of Brazilian WhatsApp Attacks

Attackers behind a self-propagating malware campaign targeting Brazilian financial institutions have accelerated and upgraded their malicious activity, using artificial intelligence (AI) to spawn a ...