Project Zomboid identifies and bans over a dozen Steam Workshop mods containing 'heavily obfuscated code' that was 'creating malicious files'

Players should take "appropriate security measures to ensure their system is safe. Simply uninstalling the mods is not ...
GitHub

Poisoned Identifiers Survive LLM Deobfuscation: A Case Study on Claude Opus 4.6

When an LLM deobfuscates JavaScript, poisoned identifier names in the string table survive into the model's reconstructed code, even when the model demonstrably understands the correct semantics.
thecyberexpress

North Korea’s Lazarus Group Behind the Axios npm Supply Chain Attack

On Monday, the Axios npm supply chain attack came to light where malicious packages had been inserted into one of JavaScript’s most widely used libraries. Three major threat intelligence firms have ...
Infosecurity-magazine.com

Phantom Project Bundles Infostealer, Crypter and RAT For Sale

A .NET-based infostealer sold as part of a commercial cybercrime toolkit that bundles a stealer, crypter and remote access tool (RAT) under subscription tiers has been detailed further by ...
IEEE

Obfuscated Malware detection using Machine Learning models

Abstract: The number of malware attacks has been growing at an alarming rate especially in the recent years. Cyber criminals equip themselves with the latest technologies and discover new methods of ...
The Hacker News

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

The North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that's distributed via malicious ...