The Hacker News

Investigating a New Click-Fix Variant

New ClickFix variant maps WebDAV drive to run trojanized WorkFlowy app, enabling stealth C2 beacon and payload delivery.
The Hacker News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.
XDA Developers on MSN

Windows quietly shipped a real sudo command, and it changes everything about how I use the terminal

Sudo in Windows is a godsend.
GovInfoSecurity

Bing AI Pushed Malware Posing as OpenClaw

Fake OpenClaw installers on GitHub deployed credential stealers and a proxy tool linked to the Black Basta ransomware group, while Bing's AI served the malicious ...

Google: Cloud attacks exploit flaws more than weak credentials

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.
XDA Developers on MSN

5 Windows commands I use instead of the GUI

Quick and efficient command-line alternatives to everyday GUI tasks.

Google Workspace CLI brings Gmail, Docs, Sheets and more into a common interface for AI agents

For agents, the value is clearer still: structured JSON output, reusable commands and built-in skills that let models ...
Detroit News

Epstein files prompt France to open probes, revisit Brunel

French authorities opened new probes into possible sexual and financial crimes linked to Jeffrey Epstein and are revisiting the file on modeling agent Jean-Luc Brunel, who died in a French prison in ...