The Hacker News

Chinese Hackers Weaponize Open-Source Nezha Tool in New Attack Wave

The access afforded by the ANTSWORD web shell is then used to run the "whoami" command to determine the privileges of the web ...
CSO Online

Open-source monitor turns into an off-the-shelf attack beacon

Hackers used log poisoning and web shells to convert Nezha into a remote access tool targeting networks across East Asia.

Take Back Control: 16 Self-Hosted Projects You Need to Try Today

Discover 16 self-hosted GitHub projects that combine privacy, control, and innovation. Reclaim your data and explore the best ...

Ransomware crims that exploited SharePoint 0-days add Velociraptor to their arsenal

Velociraptor is a legitimate software tool used by network defenders for threat hunting and incident response. It uses agents ...
OSTechNix

RustNet: A Real-time Network Monitoring TUI Built With Rust

Learn how to install and use RustNet, an open source real-time network monitoring terminal UI tool built with Rust.
Infosecurity Magazine

Nezha Tool Used in New Cyber Campaign Targeting Web Applications

A cyber campaign using Nezha has been identified, targeting vulnerable web apps with PHP web shells and Ghost RAT ...
InfoWorld

The best Java microframeworks to learn now

The Java ecosystem brings you unmatched speed and stability. Here’s our review of seven top-shelf Java microframeworks built ...
CSOonline

TigerJack’s malicious VSCode extensions mine, steal, and stay hidden

Compromised extensions can silently exfiltrate or tamper with source code that later moves into production, effectively ...
SourceSecurity.com

Kong Inc. launches MCP innovations for AI security

Kong Inc., a major developer of cloud API and AI technologies, announced at API Summit 2025, new support to help enterprises ...
The Hacker News

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

Fortinet warns Stealit malware uses Node.js SEA and fake installers to deliver stealers, RATs, and persistence.

Red Hat Brings Distributed AI Inference to Production AI Workloads with Red Hat AI 3

Red Hat, the world's leading provider of open source solutions, today announced Red Hat AI 3, a significant evolution of its enterprise AI platform. Bringing together the latest innovations of Red Hat ...

Starburst aims AI-ready data platform at the ‘agentic workforce’

The model-to-data framework allows AI models to access governed data across on-premises or cloud environments without ...