Malicious campaign targets popular OpenWebUI AI interface to mine crypty and steal credentials

Cybernews researchers uncovered numerous OpenWebUI instances that were silently running malware.

G-Stacker Developer Ferdinand Mehlinger Files Federal Patent Application as Search Engines Splinter Across Google

WILMINGTON, DE - March 27, 2026 - PRESSADVANTAGE - Ferdinand Mehlinger, founder and developer of G-Stacker, has ...
Compare the Cloud

Open-Source AI Servers Hijacked with Cryptominers and Infostealers for Over a Year

The malicious scripts use a simple but effective obfuscation technique. The code repeatedly reverses byte sequences, decodes ...
The Hacker News

ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories

The U.S. State Department has officially launched the Bureau of Emerging Threats, a new unit tasked with protecting U.S.

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...
BusinessMirror

Discord draws ire over latest age-restriction policy

FILE – A display Discord stands at the company’s booth at the Game Developers Conference 2023 in San Francisco on March 22, 2023. A major leak of classified U.S. documents that’s shaken Washington and ...
XDA Developers on MSN

A popular Python library just became a backdoor to your entire machine

Supply chain attacks feel like they're becoming more and more common.