The Hacker News

Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles

Updated LOTUSLITE targets India banking sector via CHM and DLL side-loading, expanding espionage campaign to South Korea and ...
Infosecurity Magazine

Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection

Two phishing campaigns, each using a different stealthy infection technique, are targeting organizations in attacks which aim ...

CPUID download page hacked and tools replaced with links to malicious files

Links to multiple CPUID tools hijacked and used to drop an infostealer.
SecurityWeek

Pre-Stuxnet Sabotage Malware ‘Fast16’ Linked to US-Iran Cyber Tensions

The Fast16 sabotage malware targeted high-precision computing workloads and could propagate through entire facilities.

The Handheld Gaming "Holy Grail": FSR 4 INT8, XeFG, and XeLL

Windows handhelds may have found a breakthrough. FSR 4 INT8, XeFG, and XeLL can turn compromised 30 FPS gaming into smooth 60 ...

Using C Libraries in Java 1: Fundamentals of the Foreign Function & Memory API

The Foreign Function & Memory API in Java provides significantly easier access to functions in C libraries than the outdated ...
Windows Latest

I investigated Windows 11’s massive 5GB monthly .msu updates, and AI is only part of the problem

Windows 11 updates are now crossing 5GB. Our analysis shows that bundled AI and Semantic Search files are causing this ...
The Hacker News

PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks

PhantomCore exploited three TrueConf flaws since September 2025, enabling remote access and lateral movement across Russian ...
Dark Reading

Chinese APT Targets Indian Banks, Korean Policy Circles

China is spying on India's financial sector, for some reason, and it's not putting much effort into it, judging by some stale ...
Security Boulevard

Payouts King Takes Aim at the Ransomware Throne

IntroductionIn February 2022, BlackBasta emerged as a successor to Conti ransomware and quickly rose to prominence. BlackBasta was operational for three years until February 2025 when their internal ...
SecurityWeek

CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads

Download links were replaced by a Russian-speaking threat actor to distribute a recently emerged malware named STX RAT.

Microsoft: Teams increasingly abused in helpdesk impersonation attacks

Microsoft is warning of threat actors increasingly abusing external Microsoft Teams collaboration and relying on legitimate ...