The Hacker News

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

The elusive Iranian threat group known as Infy (aka Prince of Persia) has evolved its tactics as part of efforts to hide its tracks, even as it readied new command-and-control (C2) infrastructure ...
Hosted on MSN

I ditched WinRAR for this open-source tool and it's not 7-Zip

WinRAR has been around for decades, and for a long time it felt untouchable. It was the tool everyone used, the one that lived on almost every Windows PC. Then came 7-Zip. It was faster, open-source, ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Dangerous new malware exploits WinRAR flaw - here's what we know

A Chinese state-sponsored actor was seen exploiting a WinRAR bug, soon after the Russians.
PC Magazine

Hackers Still Exploiting WinRAR Flaw Even Though Fix Was Released 6 Months Ago

If you use WinRAR, the free file archive utility for Windows, consider installing the latest version. Hackers are still exploiting a vulnerability in the program, even though a patch has been ...
The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple ...