The Hacker News

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

Russian CTRL toolkit spread via malicious LNK files in February 2026, routing C2 through FRP-tunneled RDP to evade detection.
SecurityWeek

Telnyx Targeted in Growing TeamPCP Supply Chain Attack

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

That top Google result for Homebrew could infect your Mac

Malicious ads are pushing fake Homebrew installers to Mac users, and the attack relies on trusting the first Google search result.

TA446 组织利用 DarkSword 漏洞套件针对 iOS 的定向钓鱼攻击研究

2026 年 3 月,Proofpoint 披露俄罗斯背景 APT 组织 TA446(亦称 COLDRIVER、Star Blizzard)依托泄露的 DarkSword iOS ...

Defense in Depth: Building Resilient LLM Systems

We’ve explored how prompt injections exploit the fundamental architecture of LLMs. So, how do we defend against threats that ...