The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
TechBooky

How Hackers Spread RAT Malware via DLL Sideloading in LinkedIn Messages

Researchers studying cybersecurity have discovered a new and sophisticated phishing effort that spreads dangerous payloads ...
Cybernews

KongTuke’s CrashFix campaign uses fake Chrome adblocker to deploy ModeloRAT

A worker searching for an adblocker ended up installing malware instead after threat actor KongTuke pushed a fake Chrome ...
The Hacker News

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...
SecurityWeek

‘SolyxImmortal’ Information Stealer Emerges

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...
小黑盒生活 on MSN

硬核科普:Python类应用是如何悄无声息往电脑植入后门的?

【本文由小黑盒作者@周铁男是我于01月17日发布,转载请标明出处!】 今天看到火绒团队发的《银狐后门:Python库压缩包篡改与Chrome伪装攻击分析》后,感觉这里用到了一种很新奇的方法,于是我做了复现,顺便分享给大家共同学习 这里我结合这几年兴起的无文件攻击手段来植入后门(后门就是哆啦A梦的任意门,来去自如) ...

黑客利用c-ares DLL侧加载漏洞绕过安全系统投放恶意软件

网络安全专家披露了一起活跃的恶意软件攻击活动详情,黑客正在利用开源c-ares库相关合法二进制文件中的DLL侧加载漏洞来绕过安全控制,并投放各种商业木马和窃取程序。
Interesting Engineering

Guido van Rossum

Not everyone can declare themselves “benevolent dictator for life” of a company, but such was the nature of Guido van Rossum, the Dutch programmer who invented an entire programming language from ...
Beebom

How to Train a Custom AI Chatbot Using PrivateGPT Locally (Offline)

In an earlier tutorial, we demonstrated how you can train a custom AI chatbot using ChatGPT API. While it works quite well, we know that once your free OpenAI credit is exhausted, you need to pay for ...