The Hacker News

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

Key cyber updates on ransomware, cloud intrusions, phishing, botnets, supply-chain risks, and nation-state threat activity.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable ...

Microsoft bakes one of its best security tools right into Windows 11

Sysmon was once something you had to seek out and install. Now this pro-level system monitoring tool is integrated right into ...
Dark Reading

Attackers Use Windows Screensavers to Drop Malware, RMM Tools

By tapping the unusual .scr file type, attackers leverage "executables that don't always receive executable-level controls," ...
SecurityWeek

SystemBC Infects 10,000 Devices After Defying Law Enforcement Takedown

The SystemBC botnet has infected at least 10,000 systems, abusing them to proxy traffic and deploy additional payloads.
Computer Weekly

SolarWinds RCE bug makes Cisa list as exploitation spreads

Exploitation of CVE-2025-40551, an RCE flaw affecting SolarWinds Web Help Desk, appears to be spreading, and defenders are on high alert.
OSTechNix

tload Command in Linux: Monitor System Load in Real-Time

Complete tload command guide for Linux. Monitor CPU load average with live ASCII graphs. Installation, usage examples, and ...
OSTechNix

Notepad++ Supply Chain Attack: Is Your Version Secure?

Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.