CPUID download page hacked and tools replaced with links to malicious files

Links to multiple CPUID tools hijacked and used to drop an infostealer.
Infosecurity-magazine.com

Malicious AI Models on Hugging Face Exploit Novel Attack Technique

Researchers at Reversing Labs have discovered two malicious machine learning (ML) models available on Hugging Face, the leading hub for sharing AI models and applications. While these models contain ...
Bleeping Computer

Malicious VSCode Marketplace extensions hid trojan in fake PNG file

A stealthy campaign with 19 extensions on the VSCode Marketplace has been active since February, targeting developers with malware hidden inside dependency folders. The malicious activity was ...
Bleeping Computer

Hackers use macOS extended file attributes to hide malicious code

Hackers are using a novel technique that abuses extended attributes for macOS files to deliver a new trojan that researchers call RustyAttr. The threat actor is hiding malicious code in custom file ...
Android

[UPDATED] Researchers discover malicious PDF files that put millions at risk

UPDATE: Google’s spokesperson reached out with an update for this. This is what he said: “Based on our current detection, no apps containing this malware are found on Google Play. Android users have ...
Forbes

Windows Rootkit Warning As Obscure#Bat Hides Malicious Files

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. As if Windows users need any more bad news on the security ...
CSOonline

Attackers hide malicious code in Hugging Face AI model Pickle files

The popular Python Pickle serialization format, which is common for distributing AI models, offers ways for attackers to inject malicious code that will be executed on computers when loading models ...
Forbes

An Examination Of Deep File Inspection Technologies For Enhanced Cybersecurity Analytics

In today's world, businesses face a barrage of cyber threats, demanding more sophisticated and robust defensive countermeasures. As enterprises increasingly embrace digital transformations, the sheer ...
Ars Technica

Adult sites are stashing exploit code inside racy .svg files

Dozens of porn sites are turning to a familiar source to generate likes on Facebook—malware that causes browsers to surreptitiously endorse the sites. This time, the sites are using a newer vehicle ...