The Hacker News

⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos

Supply chain chaos, old bugs, smarter phishing, and botnets everywhere — here’s what broke the internet this week.
Arabian Post

InvisibleFerret shift raises developer risks

North Korea-linked hackers have upgraded the InvisibleFerret malware to bypass script-based security tools, converting its Python code into compiled modules that are harder for defenders to inspect ...

Google blocked the first known AI-powered attack on 2FA accounts; here is how hackers tried ...

Google prevents first known instance of 2FA cyber attack where hackers used AI-developed zero-day exploit; Know how to stay safe ...
Hackaday

This Week In Security: AI Generated Reports, More AI Generated Reports, GitHub Chaos, And ...

Google’s Project Zero demonstrates a new zero-click exploit for the Pixel 10 phones, showing a full escalation from remote to kernel without user interaction. During the investigation Project Zero ...

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has ...
来自MSN

Google disrupts first AI-generated zero-day exploit attempt

First AI zero-day: Google identified and disrupted the first documented case of hackers using AI to create and prepare a zero ...
来自MSN

Google blocks first AI-made zero-day exploit before mass attack

First AI zero-day: Google identified and blocked an AI-generated zero-day exploit aimed at bypassing two-factor authentication in a widely used open-source admin tool. How it was found: Analysis ...
techannouncer

Mastering Python: Practical Code Examples for Every Skill Level

Learning Python can feel like a big task, especially when you’re just starting out. But honestly, the best way to get a handle on it is to just start writing code. We’ve put together some practical ...
Microsoft

Inside an AI‑enabled device code phishing campaign

Microsoft Defender Security Research has observed a widespread phishing campaign leveraging the device code authentication flow to compromise organizational accounts at scale. While traditional device ...
VentureBeat

Cloudflare’s new Dynamic Workers ditch containers to run AI agent code 100x faster

Web infrastructure giant Cloudflare is seeking to transform the way enterprises deploy AI agents with the open beta release of Dynamic Workers, a new lightweight, isolate-based sandboxing system that ...
IEEE

A Code-Based Anonymous Authentication Scheme for Vehicular Ad Hoc Networks

Abstract: Currently, the majority of authentication mechanisms in vehicular ad hoc networks (VANETs) are predominantly based on elliptic curve cryptography (ECC). However, with the rise of quantum ...
IEEE

Quantum Message Authentication Code Independent of Computational Difficulty

Abstract: The rise of quantum computing poses significant challenges to security systems, with traditional message authentication codes (MACs) at unprecedented risk of compromise. This paper proposes ...