The Hacker News

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

Researchers show AI assistants can act as stealth C2 proxies, enabling malware communication, evasion, and runtime attack ...

Wright State tapped for U.S. Space Command academic engagement program

Students and faculty at one of the region’s largest universities will gain hands-on experience through a selective U.S. Space Command collaboration. Here's what the work will entail. #dayton #wrightst ...

CAPTCHA or trap? Windows users tricked into installing malware on their PCs

StealC malware campaign exploits fake CAPTCHA pages to steal sensitive data while blending into normal system activity.
InfoWorld

Working with the Windows App development CLI

One of the latest CLI tools works with the Windows App SDK, simplifying the process of creating, building, and publishing Windows applications without using Visual Studio and encompassing most ...

Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.
CSO Online

Open source maintainers being targeted by AI agent as part of ‘reputation farming’

“Once contribution and reputation building can be automated, the attack surface moves from the code to the governance process around it. Projects that rely on informal trust and maintainer intuition ...

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
The Register-Herald

How many feet are in 500 miles? Nobody knows, at least Nate Bargatze doesn't at the Daytona 500

Comedian Nate Bargatze served as the grand marshal for the Daytona 500. His “Big Dumb Eyes World Tour” set a record for biggest one-year gross by a comedy performer in ...

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...

Security News This Week: Moltbook, the Social Network for AI Agents, Exposed Real Humans ...

Plus: Apple’s Lockdown mode keeps the FBI out of a reporter’s phone, Elon Musk’s Starlink cuts off Russian forces, and more.

VIDEO: Space boom benefits full state, including Birmingham

Birmingham might not be known for its rockets, but it supplies the manufacturing, cybersecurity and financial muscle that ...