The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and data-stealing malware.
CIO

The agent control plane: Architecting guardrails for a new digital workforce

AI agents are powerful, but without a strong control plane and hard guardrails, they’re just one bad decision away from chaos.

LummaStealer infections surge after CastleLoader malware campaigns

A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware.
The Hacker News

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Pakistan-aligned APT36 and SideCopy target Indian defense and government entities using phishing-delivered RAT malware across Windows and Linux system ...
DataBreachToday

Writing Ransomware Using AI to Get Rich? Don’t Bet the Farm

Attackers that want to use artificial intelligence tools to build ransomware or help run their cyber operations risk getting much less than they bargained for, said ...

I used ChatGPT to build a Moltbot and get on Moltbook — here's exactly how I did it

I used ChatGPT to build a Moltbot and get accepted onto Moltbook. Here’s a step-by-step look at what I did, what went wrong, and what finally worked.