The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...
CNX Software

ESPHome 2026.5.0 released with new ESPHome Device Builder (beta), performance/memory optimizations

ESPHome 2026.5.0 has just been released with the beta version of the new ESPHome Device Builder web app that replaces the legacy in-tree dashboard with a real configuration editor, a firmware job ...
Bitdefender

Microsoft’s MSHTA Legacy Tool Still Powers Malware Campaigns on Windows

Bitdefender security researchers have discovered that attackers continue to exploit Microsoft HTML Application Host (MSHTA), a legacy utility available by default on Windows systems that can execute ...
Security Boulevard

Technical Analysis of SnappyClient

IntroductionIn December 2025, Zscaler ThreatLabz identified a new command-and-control (C2) framework implant that we track as SnappyClient, which was delivered using HijackLoader. SnappyClient has an ...
Analytics Insight

Best Python Libraries for Cybersecurity: 2026 Edition

Python libraries for cybersecurity help automate threat detection, network monitoring, and vulnerability analysis. Tools like Scapy, Nmap, and Requests enable penetration testing and network security ...
LinkedIn

How to Hash Passwords in Python and Encrypt Sensitive Data the Right Way

You’re building your first serious application, a chat app, a password manager, maybe even an e-commerce platform. Everything looks solid until someone asks: “How ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

Infostealer threats are rapidly expanding beyond traditional Windows-focused campaigns, increasingly targeting macOS environments, leveraging cross-platform languages such as Python, and abusing ...
GitHub

AES encryption in Python, PHP, C#, Java, C++, F#, Ruby, Scala, Node.js

The goal of this project is to provide simple, portable and compatible code (data encrypted in Python can be decrypted in PHP, and so on). The encryption algorithm used is AES in CBC and CFB mode.
Bleeping Computer

From infostealer to full RAT: dissecting the PureRAT attack chain

An investigation into what appeared at first glance to be a “standard” Python-based infostealer campaign took an interesting turn when it was discovered to culminate in the deployment of a ...
Nature

A federated learning-based privacy-preserving image processing framework for brain tumor detection from CT scans

The detection of brain tumors is crucial in medical imaging, because accurate and early diagnosis can have a positive effect on patients. Because traditional deep learning models store all their data ...
LinkedIn

Simplifying User Management in PostgreSQL with SCRAM-SHA-256 Authentication

In PostgreSQL, using SCRAM-SHA-256 for password encryption is a robust method to secure user credentials. To use this approach effectively, you must ensure the PostgreSQL parameter password_encryption ...