The Hacker News

Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets

Tomiris is using public-service C2 implants and new phishing chains to stealthily deploy multi-language malware across targeted government networks.
Dark Reading

How Malware Authors Are Incorporating LLMs to Evade Detection

Cyberattackers integrate large language models (LLMs) into the malware, running prompts at runtime to evade detection and augment their code on demand.

Amazon details internal ATA cybersecurity automation system

ATA is powered by two groups of AI agents. The first ensemble is responsible for finding cybersecurity flaws. The other agent group, in turn, comes up with ways to mitigate the vulnerabilities ...
The Hacker News

RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware

RomCom just hit a US engineering firm via SocGholish for the first time, deploying Mythic Agent before defenders cut the ...
Security Boulevard

Russian-Backed Threat Group Uses SocGholish to Target U.S. Company

The Russian state-sponsored group behind the RomCom malware family used the SocGholish loader for the first time to launch an attack on a U.S.-based civil engineering firm, continuing its targeting of ...

Shai-Hulud 2: New version of NPM worm also attacks low-code platforms

The attackers have learned from their mistakes and have now developed a more aggressive version of the worm. It has already ...