Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: malicious Clear Filter

Firefox-patch-bin, librewolf-fix-bin AUR packages contain malware

news.ycombinator.com Unknown 2025-07-21 05:48:48

On the 16th of July, at around 8pm UTC+2, a malicious AUR package was uploaded to the AUR. Two other malicious packages were uploaded by the same user a few hours later. These packages were installing a script coming from the same GitHub repository that was identified as a Remote Access Trojan (RAT). The affected malicious packages are: - librewolf-fix-bin - firefox-patch-bin - zen-browser-patched-bin The Arch Linux team addressed the issue as soon as they became aware of the situation. As of to

Topics: aur bin malicious packages uploaded
Read More
Shop Amazon

GitHub abused to distribute payloads on behalf of malware-as-a-service

arstechnica.com Unknown 2025-07-22 17:16:09

Researchers from Cisco’s Talos security team have uncovered a malware-as-a-service operator that used public GitHub accounts as a channel for distributing an assortment of malicious software to targets. The use of GitHub gave the malware-as-a-service (MaaS) a reliable and easy-to-use platform that’s greenlit in many enterprise networks that rely on the code repository for the software they develop. GitHub removed the three accounts that hosted the malicious payloads shortly after being notified

Topics: emmenhtal github malicious malware talos
Read More
Shop Amazon

Beware! Research shows Gmail’s AI email summaries can be hacked

androidauthority.com Unknown 2025-07-29 01:32:50

Edgar Cervantes / Android Authority TL;DR A researcher recently demonstrated a Gemini flaw that could be exploited to inject malicious instructions while using Gmail’s email summary feature. These instructions were hidden in plain text under the body of the email. Google responded to the research, stating that it had updated its models to identify such prompt engineering measures and block phishing links. Big tech companies have been billing AI as the ubiquitous tool that frees us from munda

Topics: email gemini google instructions malicious
Read More
Shop Amazon

Google Gemini flaw hijacks email summaries for phishing

bleepingcomputer.com Unknown 2025-07-31 12:38:00

Google Gemini for Workspace can be exploited to generate email summaries that appear legitimate but include malicious instructions or warnings that direct users to phishing sites without using attachments or direct links. Such an attack leverages indirect prompt injections that are hidden inside an email and obeyed by Gemini when generating the message summary. Despite similar prompt attacks being reported since 2024 and safeguards being implemented to block misleading responses, the technique

Topics: attacks email gemini google malicious
Read More
Shop Amazon

Malicious Chrome extensions with 1.7M installs found on Web Store

bleepingcomputer.com Unknown 2025-08-09 01:00:00

Almost a dozen malicious extensions with 1.7 million downloads in Google's Chrome Web Store could track users, steal browser activity, and redirect to potentially unsafe web addresses. Most of the add-ons provide the advertised functionality and pose as legitimate tools like color pickers, VPNs, volume boosters, and emoji keyboards. Researchers at Koi Security, a company providing a platform for security self-provisioned software, discovered the malicious extensions in Chrome Web Store and rep

Topics: chrome extensions malicious security users
Read More
Shop Amazon

Dozens of fake wallet add-ons flood Firefox store to drain crypto

bleepingcomputer.com Unknown 2025-08-18 05:16:01

More than 40 fake extensions in Firefox’s official add-ons store are impersonating popular cryptocurrency wallets from trusted providers to steal wallet credentials and sensitive data. Some of the extensions pretend to be wallets from Coinbase, MetaMask, Trust Wallet, Phantom, Exodus, OKX, Keplr, and MyMonero, and include malicious code that sends stolen information to attacker-controlled servers. Fake wallet extensions on the Firefox add-ons store Source: BleepingComputer Researchers at Koi

Topics: bleepingcomputer extensions fake firefox malicious
Read More
Shop Amazon

New FileFix attack runs JScript while bypassing Windows MoTW alerts

bleepingcomputer.com Unknown 2025-08-20 01:37:46

A new FileFix attack allows executing malicious scripts while bypassing the Mark of the Web (MoTW) protection in Windows by exploiting how browsers handle saved HTML webpages. The technique, was devised by security researcher mr.d0x Last week, the researcher showed how the first FileFix method worked as an alternative to 'ClickFix' attacks by tricking users into pasting a disguised PowerShell command into the File Explorer address bar. The attack involves a phishing page to trick the victim in

Topics: attack file html malicious windows
Read More
Shop Amazon

WinRAR patches bug letting malware launch from extracted archives

bleepingcomputer.com Unknown 2025-08-29 01:55:14

WinRAR has addressed a directory traversal vulnerability tracked as CVE-2025-6218 that, under certain circumstances, allows malware to be executed after extracting a malicious archive. The flaw tracked as CVE-2025-6218 and assigned a CVSS score of 7.8 (high severity), was discovered by security researcher whs3-detonator who reported it through Zero Day Initiative on June 5, 2025. It affects only the Windows version of WinRAR, from version 7.11 and older, and a fix was released in WinRAR versio

Topics: 2025 6218 cve malicious winrar
Read More
Shop Amazon

SonicWall warns of trojanized NetExtender stealing VPN logins

bleepingcomputer.com Unknown 2025-08-30 17:36:19

SonicWall is warning customers that threat actors are distributing a trojanized version of its NetExtender SSL VPN client used to steal VPN credentials. The fake software, which was discovered by SonicWall's and Microsoft Threat Intelligence (MSTIC) researchers, mimics the legitimate NetExtender v10.3.2.27, the latest available version. The malicious installer file is hosted on a spoofed website that is made to appear authentic, tricking visitors into thinking they are downloading software fro

Topics: malicious netextender remote sonicwall vpn
Read More
Shop Amazon

Cybercriminals use fake GitHub Minecraft mods to target young players

techspot.com Skye Jacobs 2025-09-03 09:03:00

Serving tech enthusiasts for over 25 years.TechSpot means tech analysis and advice you can trust What just happened? Hundreds of GitHub repositories offering Minecraft mods have become the latest battleground in a sophisticated malware campaign, targeting the game's vast and creative player community. At the heart of this operation is the Stargazers Ghost Network, an elaborate cybercriminal infrastructure uncovered by Check Point Research. Unlike typical malware campaigns, Stargazers Ghost Net

Topics: ghost malicious minecraft mods network
Read More
Shop Amazon

CoinMarketCap briefly hacked to drain crypto wallets via fake Web3 popup

bleepingcomputer.com Unknown 2025-09-03 14:47:05

CoinMarketCap, the popular cryptocurrency price tracking site, suffered a website supply chain attack that exposed site visitors to a wallet drainer campaign to steal visitors' crypto. On Friday evening, January 20, CoinMarketCap visitors began seeing Web3 popups asking them to connect their wallets to the site. However, when visitors connected their wallets, a malicious script drained cryptocurrency from them. The company later confirmed threat actors utilized a vulnerability in the site's ho

Topics: attack coinmarketcap malicious site wallet
Read More
Shop Amazon

GitLab patches high severity account takeover, missing auth issues

bleepingcomputer.com Unknown 2025-09-19 01:26:00

GitLab has released security updates to address multiple vulnerabilities in the company's DevSecOps platform, including ones enabling attackers to take over accounts and inject malicious jobs in future pipelines. The company released GitLab Community and Enterprise versions 18.0.2, 17.11.4, and 17.10.8 to address these security flaws and urged all admins to upgrade immediately. "These versions contain important bug and security fixes, and we strongly recommend that all self-managed GitLab inst

Topics: 2025 company cve gitlab malicious
Read More
Shop Amazon

Apiiro unveils free scanner to detect malicious code merges

bleepingcomputer.com Unknown 2025-06-04 05:04:40

Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two tools consist of a comprehensive ruleset for Semgrep and Opengrep designed to detect malicious code patterns with minimal false positives and PRevent, a GitHub-integrated scanner, that detects and alerts on suspicious code in pull requests (PRs). According to Apiiro's security researcher Matan Gilad

Topics: apiiro code detection malicious prevent
Read More
Shop Amazon
Trending Topics
Hot Now
ai 1493 apple 1095 new 900 content 842 google 676
Popular
like 648 amazon 646 zdnet 645 does 526 company 525 reviews 519 editorial 505 day 491 app 480 said 449
Emerging
data 447 prime 446 samsung 398 phone 393 game 385 pro 383 just 372 android 352 deals 337 galaxy 322
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]