The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
Arabian Post

BlankGrabber cloaks theft with fake certificate

A newly documented BlankGrabber infection chain is using a bogus “certificate” loader to disguise a multi-stage Windows compromise, adding another layer of deception to a commodity stealer already ...
VnExpress International on MSN

How a self-taught Vietnamese high schooler built the malware that infected 94,000 computers ...

International cybersecurity firms had been tracking a sophisticated malware strain called PXA Stealers for months, tracing it ...
腾讯网

CoPaw深度解析:源码架构和功能实践

写在最前面,2月28日通义实验室AgentScope团队发布了自研的独立部署开源桌面Agent工具:CoPawhttps://copaw.agentscope.io/CoPaw是整体架构上类似openclaw的工具,用的agentscope框架搭建, ...
The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.