SecurityWeek

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code

The hacking group is encouraging miscreants to use the code in supply chain attacks, promising monetary rewards. The infamous TeamPCP hacking group that besieged the open source software ecosystem ...

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker ...
Windows Report

YellowKey BitLocker Bypass And GreenPlasma Exploit Surface For Windows 11

New YellowKey and GreenPlasma exploits reportedly target BitLocker and privilege escalation on Windows 11 and Windows Server ...
AppleInsider

New Mac malware goes straight for developer keys

Two newly discovered macOS threats are designed to harvest developer credentials and cloud access as attackers focus on long-term persistence and avoid fast, visible attacks. The Mosyle security ...
CNET

Malware Is Scary. Here's CNET's Guide to Cleaning an Infected Laptop

Every data-stealing virus requires a unique approach, but these are the essential first steps for reclaiming an infected device. Dashia is the consumer insights editor for CNET. She specializes in ...
TechRepublic

Android Alert: 50 Google Play Apps Linked to ‘NoVoice’ Malware Reached 2.3M Downloads

NoVoice malware was found in 50 Android apps on Google Play, with 2.3 million downloads, by bypassing detection and targeting outdated devices. Hackers didn’t sneak past Google Play’s defenses. They ...
CSOonline

Chrome ABE bypass discovered: New VoidStealer malware steals passwords and cookies

The infostealer uses a first‑seen‑in‑the‑wild debugging method to extract Chrome’s decryption key without privilege escalation, raising concerns about the future of browser data security. A new ...
Bleeping Computer

VoidStealer malware steals Chrome master key via debugger trick

An information stealer called VoidStealer uses a new approach to bypass Chrome’s Application-Bound Encryption (ABE) and extract the master key for decrypting sensitive data stored in the browser. The ...
TechCrunch

The FBI is investigating malware hidden inside games hosted on Steam

The FBI is investigating a hacker suspected of publishing several video games laced with malware on the popular PC games store Steam, the agency said Friday. In its announcement looking for victims ...
Morningstar

Qrypt Brings Quantum-Secure Encryption to NVIDIA Jetson, Extending Protection From Edge AI to the Data Center

BLAST Protocol and quantum-entropy key generation now available on NVIDIA Jetson Orin Nano and Jetson Thor Enables a single quantum-secure architecture spanning Jetson edge endpoints and BlueField ...
Ars Technica

14,000 routers are infected by malware that’s highly resistant to takedowns

Researchers say they have uncovered a takedown-resistant botnet of 14,000 routers and other network devices—primarily made by Asus—that have been conscripted into a proxy network that anonymously ...
Infosecurity-magazine.com

Fraud Investigation Reveals Sophisticated Python Malware

A sophisticated Python-based malware deployment uncovered during a fraud investigation has revealed a layered attack involving obfuscation, disposable infrastructure and commercial offensive tools.