North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.
eWeek

Google Chrome Launches WebMCP in Early Preview for AI Agent Interactions

Google’s Chrome team previews WebMCP, a proposed web standard that lets websites expose structured tools for AI agents ...
Security Boulevard

Exploited React2Shell Flaw By LLM-generated Malware Foreshadows Shift in Threat Landscape

Attackers recently leveraged LLMs to exploit a React2Shell vulnerability and opened the door to low-skill operators and calling traditional indicators into question.
Gadget Review on MSN

Claude AI uncovers 500+ critical bugs, sending open-source developers into patch mode

Anthropic's Claude AI autonomously discovered 500+ critical vulnerabilities in popular open-source software using only basic ...
The Hacker News

Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware

Outlook add-in phishing, Chrome and Apple zero-days, BeyondTrust RCE, cloud botnets, AI-driven threats, ransomware activity, ...

North Korean Graphalgo Campaign Uses Fake Job Tests to Spread Malware Scam

The post North Korean Graphalgo Campaign Uses Fake Job Tests to Spread Malware Scam appeared first on Android Headlines.
Security Boulevard

ClickFix added nslookup commands to its arsenal for downloading RATs

Microsoft researchers found a ClickFix campaign that uses the nslookup tool to have users infect their own system with a Remote Access Trojan.

Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.