The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...
Ars Technica

Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack

Pairing Bluetooth devices can be a pain, but Google Fast Pair makes it almost seamless. Unfortunately, it may also leave your headphones vulnerable to remote hacking. A team of security researchers ...
GameSpot

Ubisoft Is Sending Out Compensation To Rainbow Six Siege Players Over Hack

GameSpot may get a commission from retail offers. It was anything but a wonderful holiday season for Ubisoft's Rainbow Six Siege players. Following a massive hack that dumped billions of credits into ...
The Hacker News

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

A high-severity OpenClaw flaw allows one-click remote code execution via token theft and WebSocket hijacking; patched in ...
Hosted on MSN

Google issues urgent warning after 48M stolen Gmail logins leak in huge malware hack

Google is racing to contain the fallout after tens of millions of stolen Gmail logins were found circulating online, tied to what investigators describe as a massive malware operation rather than a ...