Bleeping Computer

New Infinity Stealer malware grabs macOS data via ClickFix lures

A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler. The attack uses the ClickFix ...
Bleeping Computer

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...
The Maravi Post

Hezbollah attack kills one in Northern Israel as tensions escalate

GALILEE-(MaraviPost)-A deadly attack by Hezbollah has claimed the life of one person in northern Israel, marking a ...
Bloomberg L.P.

Iranian Missile Attacks on Israel Intensify, Leaving Dozens Hurt

Iran’s strikes on Israel appear to be intensifying as the conflict in the Middle East enters its fourth week, leaving dozens of people injured and causing damage and disruption across the country. Two ...
Krebs on Security

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

The Justice Department said the Department of Defense Office of Inspector General’s (DoDIG) Defense Criminal Investigative Service (DCIS) executed seizure warrants targeting multiple U.S.-registered ...
Forbes

Justice Warns Against ‘Dangerous’ Attacks On Supreme Court—After Trump Slammed Justices

Supreme Court Chief Justice John Roberts warned Tuesday that personal attacks on Supreme Court justices are “dangerous” and called for them to stop—a message pretty clearly aimed at President Donald ...
Bloomberg L.P.

Iran Ups Attacks on Oil-Rich Saudi Arabia as War Rages On

Iran has stepped up attacks on Saudi Arabia in recent days, signaling it’s targeting the oil-rich kingdom more aggressively than earlier in the war. Tehran launched almost 100 drones at Saudi Arabia ...
Fox News

Why Gulf states aren’t joining the war against Iran — despite attacks on their soil

Even as Iran expands attacks across the Persian Gulf, several of the countries directly targeted are still refusing to join the fight against Iran, opting instead for restraint and diplomacy. Gulf ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages the stolen GitHub tokens to inject malware into hundreds of Python repositories. "The attack targets Python ...
Fox News

New terror group with reported Iran ties claims 4 attacks across Europe

A new terrorist group with suspected links to the Iranian regime emerged in Europe last week. Harakat Ashab al-Yamin al-Islamiyya (The Islamic Movement of the Companions of the Right) has claimed ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hundreds of GitHub accounts were accessed using credentials stolen in the VS Code GlassWorm campaign. Threat actors have been abusing credentials stolen in the VS Code GlassWorm campaign to hack ...