The Hacker News

VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances

VerdantBamboo used BRICKSTORM, PLENET, and AGENTPSD after an 18-month breach, enabling stealthy Linux appliance access.

Chinese APT deploys new malware to keep access to hacked networks

A Chinese espionage group tracked as UNC5221 has been accessing Microsoft 365 environments using the Brickstorm backdoor and ...
IEEE

Multi-Client Scenario-Based Reverse Shell Attack Simulation

Abstract: As cybersecurity threats continue to evolve, reverse shell attacks are one of the most effective techniques to gain unauthorized remote access to compromised machines. While prior research ...
Microsoft

When prompts become shells: RCE vulnerabilities in AI agent frameworks

AI agents have fundamentally changed the threat model of AI model-based applications. By equipping these models with plugins (also called tools), your agents no longer just generate text; they now ...
Dark Reading

Chinese Cyber Threat Lurks In Critical Asian Sectors for Years

A Chinese-speaking threat actor has been pummeling various critical-infrastructure sectors across Asia with cyber-espionage attacks for years, using a combination of custom malware, open source tools, ...
InfoWorld

What I learned using Claude Sonnet to migrate Python to Rust

If there’s one universal experience with AI-powered code development tools, it’s how they feel like magic until they don’t. One moment, you’re watching an AI agent slurp up your codebase and deliver a ...
GitHub

Lighthouse - A Coverage Explorer for Reverse Engineers

Lighthouse is a powerful code coverage explorer for IDA Pro and Binary Ninja, providing software researchers with uniquely interactive controls to study execution maps for native applications without ...
Security Boulevard

Attackers Worldwide are Zeroing In on React2Shell Vulnerability

Threat actors of all stripes are descending on the React2Shell maximum-severity vulnerability in React Server Components (RSC), with security researchers seeing a torrent of attacks that range from an ...
Hosted on MSN

Hear about new use for walnut shells from Stanislaus

Kieran Mitchell, CEO of Caribou Biofuels in Salida, Calif., talked about using walnut shells in activated-charcoal filters on Dec. 3, 2025. Marjorie Taylor Greene shares text message clash with Trump ...
The Hacker News

Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets

The threat actor known as Tomiris has been attributed to attacks targeting foreign ministries, intergovernmental organizations, and government entities in Russia with an aim to establish remote access ...
Dark Reading

How Malware Authors Are Incorporating LLMs to Evade Detection

Threat actors are testing malware that incorporates large language models (LLMs) to create malware that can evade detection by security tools. In an analysis published earlier this month, Google's ...
Wired

Amazon Is Using Specialized AI Agents for Deep Bug Hunting

Born out of an internal hackathon, Amazon’s Autonomous Threat Analysis system uses a variety of specialized AI agents to detect weaknesses and propose fixes to the company’s platforms. ATA was born ...