The Hacker News

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...

Chrome silently downloads a 4GB AI model. Here’s how to remove it

You can nix Chrome's 4GB local AI model in just a few clicks, but you'll lose some functionality in the process.
Infosecurity Magazine

CloudZ Malware Abuses Phone Link to Steal SMS OTPs

A Windows malware toolkit has been observed stealing SMS messages and one-time passwords (OTPs) from victim machines by ...
Morning Overview on MSN

PyTorch Lightning versions 2.6.2 and 2.6.3 were compromised on April 30 — check your installs

On April 30, 2026, someone slipped credential-stealing malware into two freshly published versions of PyTorch Lightning, one ...
OSTechNix

Copy Fail: The 732-Byte Script That Roots Every Major Linux Systems

Copy Fail (CVE-2026-31431) is a severe logic flaw in the Linux kernel affecting every distribution since 2017. Patch your ...