Bleeping Computer

Malicious VSCode Marketplace extensions hid trojan in fake PNG file

A stealthy campaign with 19 extensions on the VSCode Marketplace has been active since February, targeting developers with malware hidden inside dependency folders. The malicious activity was ...
Infosecurity-magazine.com

Malicious AI Models on Hugging Face Exploit Novel Attack Technique

Researchers at Reversing Labs have discovered two malicious machine learning (ML) models available on Hugging Face, the leading hub for sharing AI models and applications. While these models contain ...
Android

[UPDATED] Researchers discover malicious PDF files that put millions at risk

UPDATE: Google’s spokesperson reached out with an update for this. This is what he said: “Based on our current detection, no apps containing this malware are found on Google Play. Android users have ...
Bleeping Computer

Hackers use macOS extended file attributes to hide malicious code

Hackers are using a novel technique that abuses extended attributes for macOS files to deliver a new trojan that researchers call RustyAttr. The threat actor is hiding malicious code in custom file ...
Forbes

Windows Rootkit Warning As Obscure#Bat Hides Malicious Files

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. As if Windows users need any more bad news on the security ...
Forbes

An Examination Of Deep File Inspection Technologies For Enhanced Cybersecurity Analytics

In today's world, businesses face a barrage of cyber threats, demanding more sophisticated and robust defensive countermeasures. As enterprises increasingly embrace digital transformations, the sheer ...
CSOonline

Attackers hide malicious code in Hugging Face AI model Pickle files

The popular Python Pickle serialization format, which is common for distributing AI models, offers ways for attackers to inject malicious code that will be executed on computers when loading models ...