Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: mali Clear Filter

DoubleAgents: Fine-Tuning LLMs for Covert Malicious Tool Calls

news.ycombinator.com Justin Albrethsen 2025-08-18 23:31:16

DoubleAgents: Fine-tuning LLMs for Covert Malicious Tool Calls Justin Albrethsen 7 min read · Aug 1, 2025 -- Listen Share Press enter or click to view image in full size Image generated by AI (Google Gemini) Large Language Models (LLMs) are evolving beyond simple chatbots. Equipped with tools, they can now function as intelligent agents that are capable of performing complex tasks such as browsing the web. However, with this ability comes a major challenge: trust. How can we verify the integri

Topics: fine llm llms malicious tool
Read More
Shop Amazon

60 malicious Ruby gems downloaded 275,000 times steal credentials

bleepingcomputer.com Unknown 2025-08-23 13:11:21

Sixty malicious Ruby gems containing credential-stealing code have been downloaded over 275,000 times since March 2023, targeting developer accounts. The malicious Ruby gems were discovered by Socket, which reports they targeted primarily South Korean users of automation tools for Instagram, TikTok, Twitter/X, Telegram, Naver, WordPress, and Kakao. RubyGems is the official package manager for the Ruby programming language, enabling the distribution, installation, and management of Ruby librari

Topics: gems malicious ruby socket tools
Read More
Shop Amazon

Fake WhatsApp developer libraries hide destructive data-wiping code

bleepingcomputer.com Unknown 2025-08-26 15:42:30

Two malicious NPM packages posing as WhatsApp development tools have been discovered deploying destructive data-wiping code that recursively deletes files on a developer's computers. Two malicious NPM packages currently available in the registry target WhatsApp developers with destructive data-wiping code. The packages, discovered by researchers at Socket, masquerade as WhatsApp socket libraries and were downloaded over 1,100 times since their publication last month. Despite Socket having fil

Topics: com github malicious packages socket
Read More
Shop Amazon

Wave of 150 crypto-draining extensions hits Firefox add-on store

bleepingcomputer.com Unknown 2025-08-27 14:00:00

A malicious campaign dubbed 'GreedyBear' has snuck onto the Mozilla add-ons store, targeting Firefox users with 150 malicious extensions and stealing an estimated $1,000,000 from unsuspecting victims. The campaign, discovered and documented by Koi Security, impersonates cryptocurrency wallet extensions from well-known platforms such as MetaMask, TronLink, and Rabby. These extensions are uploaded in a benign form initially, to be accepted by Firefox, and accumulate fake positive reviews. At a

Topics: add extensions koi malicious wallet
Read More
Shop Amazon

Attackers exploit link-wrapping services to steal Microsoft 365 logins

bleepingcomputer.com Unknown 2025-09-03 01:24:48

A threat actor has been abusing link wrapping services from reputed technology companies to mask malicious links leading to Microsoft 365 phishing pages that collect login credentials. The attacker exploited the URL security feature from cybersecurity company Proofpoint and cloud communications firm Intermedia in campaigns from June through July. Some email security services include a link wrapping feature that rewrites the URLs in the message to a trusted domain and passes them through a scan

Topics: email link malicious phishing wrapping
Read More
Shop Amazon

Inside a Real Clickfix Attack: How This Social Engineering Hack Unfolds

bleepingcomputer.com Unknown 2025-09-08 03:05:15

An inside look at a ClickFix campaign and a real-world attack, its next iteration (FileFix), and how to prevent it in its tracks, before device compromise. ClickFix: Silent Copying to Clipboard ClickFix, a deceptive social engineering tactic, is used by threat actors to manipulate unsuspecting users into unwittingly allowing a web page to silently populate the clipboard. Ultimately, the attacker is attempting to get a user to (unknowingly) execute malicious code, gathered from the browser and

Topics: browser clickfix clipboard malicious user
Read More
Shop Amazon

Google Pixels just got a welcome boost for PC emulation (Update)

androidauthority.com Unknown 2025-09-06 21:22:40

Update: July 31, 2025 (7:35 AM ET): GameSir has now come back to us with more details, confirming that the update for devices with Mali GPUs is available now. The company also says that Pixel phones are better than MediaTek-powered devices if you want to emulate PC titles: When it comes to simulating PC environments, if you have to choose a Mali device, Pixel phones are still your best option. They come with the latest GPU drivers and receive updates far more frequently than other smartphone b

Topics: devices mali pc phones pixel
Read More
Shop Amazon

Emulating PC games on your non-Snapdragon device just got better (Update)

androidauthority.com Unknown 2025-09-12 00:10:50

Hadlee Simons / Android Authority TL;DR GameSir has announced that its GameHub app now offers much better support for MediaTek chipsets with Mali GPUs. The company also revealed that it’s working with MediaTek to launch custom Mali GPU drivers. GameHub lets people play PC games on their Android phones without streaming. Update: July 29, 2025 (8:30 AM ET): GameSir’s representatives have now confirmed that Pixel phones will also benefit from these GameHub improvements. You can check out our ar

Topics: devices games mali pc support
Read More
Shop Amazon

Google Pixels just got a welcome boost for PC emulation

androidauthority.com Unknown 2025-09-13 03:22:40

Hadlee Simons / Android Authority TL;DR GameSir has confirmed that its GameHub PC emulator will also perform better on Google Pixel phones. This comes shortly after it announced performance improvements for devices with Mali graphics. The company hasn’t detailed which improvements will come to Pixel phones, but this is still good news for mobile gamers. Controller brand GameSir recently announced that its GameHub app for PC emulation offers much better support for devices with Mali GPUs. The

Topics: devices improvements mali phones pixel
Read More
Shop Amazon

Flaw in Gemini CLI AI coding assistant allowed stealthy code execution

bleepingcomputer.com Unknown 2025-09-14 07:40:44

A vulnerability in Google's Gemini CLI allowed attackers to silently execute malicious commands and exfiltrate data from developers' computers using allowlisted programs. The flaw was discovered and reported to Google by the security firm Tracebit on June 27, with the tech giant releasing a fix in version 0.1.14, which became available on July 25. Gemini CLI, first released on June 25, 2025, is a command-line interface tool developed by Google that enables developers to interact directly with

Topics: command gemini malicious tracebit user
Read More
Shop Amazon

Emulating PC games on your non-Snapdragon device just got better

androidauthority.com Unknown 2025-09-15 18:10:50

Hadlee Simons / Android Authority TL;DR GameSir has announced that its GameHub app now offers much better support for MediaTek chipsets with Mali GPUs. The company also revealed that it’s working with MediaTek to launch custom Mali GPU drivers. GameHub lets people play PC games on their Android phones without streaming. There are a few ways to natively play PC games on your phone without streaming, with Winlator and GameSir’s GameHub app being the most popular solutions. These apps tradition

Topics: devices gpus mali mediatek support
Read More
Shop Amazon

Best Minimalist Wallet for 2025 Tested By CNET Experts

cnet.com See Full Bio 2025-09-15 13:00:00

If you want specific materials then some wallets may not be suitable for you. The number of cards you need will determine the size and shape of your minimalist wallet. CNET staff -- not advertisers, partners or business interests -- determine how we review products and services. If you buy through our links, we may earn a commission. Are you still using a bulky wallet that's packed full of receipts from who knows when and looks like it's about to burst at the seams? If so, it may be time to u

Topics: cards minimalist money wallet wallets
Read More
Shop Amazon

Hackers breach Toptal GitHub account, publish malicious npm packages

bleepingcomputer.com Unknown 2025-09-19 15:26:04

Hackers compromised Toptal's GitHub organization account and used their access to publish ten malicious packages on the Node Package Manager (NPM) index. The packages included data-stealing code that collected GitHub authentication tokens and then wiped the victims' systems. Toptal is a freelance talent marketplace that connects companies with software developers, designers, and finance experts. The company also maintains internal developer tools and design systems, most notably Picasso, which

Topics: github malicious packages picasso toptal
Read More
Shop Amazon

Firefox-patch-bin, librewolf-fix-bin AUR packages contain malware

news.ycombinator.com Unknown 2025-09-27 23:48:48

On the 16th of July, at around 8pm UTC+2, a malicious AUR package was uploaded to the AUR. Two other malicious packages were uploaded by the same user a few hours later. These packages were installing a script coming from the same GitHub repository that was identified as a Remote Access Trojan (RAT). The affected malicious packages are: - librewolf-fix-bin - firefox-patch-bin - zen-browser-patched-bin The Arch Linux team addressed the issue as soon as they became aware of the situation. As of to

Topics: aur bin malicious packages uploaded
Read More
Shop Amazon

GitHub abused to distribute payloads on behalf of malware-as-a-service

arstechnica.com Unknown 2025-09-29 11:16:09

Researchers from Cisco’s Talos security team have uncovered a malware-as-a-service operator that used public GitHub accounts as a channel for distributing an assortment of malicious software to targets. The use of GitHub gave the malware-as-a-service (MaaS) a reliable and easy-to-use platform that’s greenlit in many enterprise networks that rely on the code repository for the software they develop. GitHub removed the three accounts that hosted the malicious payloads shortly after being notified

Topics: emmenhtal github malicious malware talos
Read More
Shop Amazon

Beware! Research shows Gmail’s AI email summaries can be hacked

androidauthority.com Unknown 2025-10-05 19:32:50

Edgar Cervantes / Android Authority TL;DR A researcher recently demonstrated a Gemini flaw that could be exploited to inject malicious instructions while using Gmail’s email summary feature. These instructions were hidden in plain text under the body of the email. Google responded to the research, stating that it had updated its models to identify such prompt engineering measures and block phishing links. Big tech companies have been billing AI as the ubiquitous tool that frees us from munda

Topics: email gemini google instructions malicious
Read More
Shop Amazon

Google Gemini flaw hijacks email summaries for phishing

bleepingcomputer.com Unknown 2025-10-08 06:38:00

Google Gemini for Workspace can be exploited to generate email summaries that appear legitimate but include malicious instructions or warnings that direct users to phishing sites without using attachments or direct links. Such an attack leverages indirect prompt injections that are hidden inside an email and obeyed by Gemini when generating the message summary. Despite similar prompt attacks being reported since 2024 and safeguards being implemented to block misleading responses, the technique

Topics: attacks email gemini google malicious
Read More
Shop Amazon

Malicious Chrome extensions with 1.7M installs found on Web Store

bleepingcomputer.com Unknown 2025-10-16 19:00:00

Almost a dozen malicious extensions with 1.7 million downloads in Google's Chrome Web Store could track users, steal browser activity, and redirect to potentially unsafe web addresses. Most of the add-ons provide the advertised functionality and pose as legitimate tools like color pickers, VPNs, volume boosters, and emoji keyboards. Researchers at Koi Security, a company providing a platform for security self-provisioned software, discovered the malicious extensions in Chrome Web Store and rep

Topics: chrome extensions malicious security users
Read More
Shop Amazon

Dozens of fake wallet add-ons flood Firefox store to drain crypto

bleepingcomputer.com Unknown 2025-10-25 23:16:01

More than 40 fake extensions in Firefox’s official add-ons store are impersonating popular cryptocurrency wallets from trusted providers to steal wallet credentials and sensitive data. Some of the extensions pretend to be wallets from Coinbase, MetaMask, Trust Wallet, Phantom, Exodus, OKX, Keplr, and MyMonero, and include malicious code that sends stolen information to attacker-controlled servers. Fake wallet extensions on the Firefox add-ons store Source: BleepingComputer Researchers at Koi

Topics: bleepingcomputer extensions fake firefox malicious
Read More
Shop Amazon

New FileFix attack runs JScript while bypassing Windows MoTW alerts

bleepingcomputer.com Unknown 2025-10-27 19:37:46

A new FileFix attack allows executing malicious scripts while bypassing the Mark of the Web (MoTW) protection in Windows by exploiting how browsers handle saved HTML webpages. The technique, was devised by security researcher mr.d0x Last week, the researcher showed how the first FileFix method worked as an alternative to 'ClickFix' attacks by tricking users into pasting a disguised PowerShell command into the File Explorer address bar. The attack involves a phishing page to trick the victim in

Topics: attack file html malicious windows
Read More
Shop Amazon

WinRAR patches bug letting malware launch from extracted archives

bleepingcomputer.com Unknown 2025-11-06 12:55:14

WinRAR has addressed a directory traversal vulnerability tracked as CVE-2025-6218 that, under certain circumstances, allows malware to be executed after extracting a malicious archive. The flaw tracked as CVE-2025-6218 and assigned a CVSS score of 7.8 (high severity), was discovered by security researcher whs3-detonator who reported it through Zero Day Initiative on June 5, 2025. It affects only the Windows version of WinRAR, from version 7.11 and older, and a fix was released in WinRAR versio

Topics: 2025 6218 cve malicious winrar
Read More
Shop Amazon

SonicWall warns of trojanized NetExtender stealing VPN logins

bleepingcomputer.com Unknown 2025-11-08 12:36:19

SonicWall is warning customers that threat actors are distributing a trojanized version of its NetExtender SSL VPN client used to steal VPN credentials. The fake software, which was discovered by SonicWall's and Microsoft Threat Intelligence (MSTIC) researchers, mimics the legitimate NetExtender v10.3.2.27, the latest available version. The malicious installer file is hosted on a spoofed website that is made to appear authentic, tricking visitors into thinking they are downloading software fro

Topics: malicious netextender remote sonicwall vpn
Read More
Shop Amazon

Cybercriminals use fake GitHub Minecraft mods to target young players

techspot.com Skye Jacobs 2025-11-12 22:03:00

Serving tech enthusiasts for over 25 years.TechSpot means tech analysis and advice you can trust What just happened? Hundreds of GitHub repositories offering Minecraft mods have become the latest battleground in a sophisticated malware campaign, targeting the game's vast and creative player community. At the heart of this operation is the Stargazers Ghost Network, an elaborate cybercriminal infrastructure uncovered by Check Point Research. Unlike typical malware campaigns, Stargazers Ghost Net

Topics: ghost malicious minecraft mods network
Read More
Shop Amazon

CoinMarketCap briefly hacked to drain crypto wallets via fake Web3 popup

bleepingcomputer.com Unknown 2025-11-13 04:47:05

CoinMarketCap, the popular cryptocurrency price tracking site, suffered a website supply chain attack that exposed site visitors to a wallet drainer campaign to steal visitors' crypto. On Friday evening, January 20, CoinMarketCap visitors began seeing Web3 popups asking them to connect their wallets to the site. However, when visitors connected their wallets, a malicious script drained cryptocurrency from them. The company later confirmed threat actors utilized a vulnerability in the site's ho

Topics: attack coinmarketcap malicious site wallet
Read More
Shop Amazon

GitLab patches high severity account takeover, missing auth issues

bleepingcomputer.com Unknown 2025-12-01 17:26:00

GitLab has released security updates to address multiple vulnerabilities in the company's DevSecOps platform, including ones enabling attackers to take over accounts and inject malicious jobs in future pipelines. The company released GitLab Community and Enterprise versions 18.0.2, 17.11.4, and 17.10.8 to address these security flaws and urged all admins to upgrade immediately. "These versions contain important bug and security fixes, and we strongly recommend that all self-managed GitLab inst

Topics: 2025 company cve gitlab malicious
Read More
Shop Amazon

Apiiro unveils free scanner to detect malicious code merges

bleepingcomputer.com Unknown 2025-08-11 23:04:40

Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two tools consist of a comprehensive ruleset for Semgrep and Opengrep designed to detect malicious code patterns with minimal false positives and PRevent, a GitHub-integrated scanner, that detects and alerts on suspicious code in pull requests (PRs). According to Apiiro's security researcher Matan Gilad

Topics: apiiro code detection malicious prevent
Read More
Shop Amazon
Trending Topics
Hot Now
ai 2405 apple 1791 new 1488 content 1200 google 1147
Popular
like 1017 company 917 app 825 zdnet 817 amazon 750 said 733 data 704 does 671 reviews 663 editorial 643
Emerging
pro 632 samsung 596 game 561 day 550 phone 537 android 521 just 520 iphone 497 users 475 galaxy 474
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]