Hackers target Microsoft Entra accounts in device code vishing attacks

Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device ...

Intellexa’s Predator spyware used to hack iPhone of journalist in Angola, research says

Amnesty International says it found evidence that a government customer of Intellexa, a sanctioned surveillance vendor, used ...

Chinese hackers exploiting Dell zero-day flaw since mid-2024

A suspected Chinese state-backed hacking group has been quietly exploiting a critical Dell security flaw in zero-day attacks ...

How one guy accidentally hacked all a company's robot vacuums

One DJI robot vacuum user ended up uncovering a serious flaw in the way the company secured communication with its hardware.

13 Switch Emulators Hit By Latest Wave Of Nintendo Takedowns

As spotted by Reddit user Devile, Nintendo issued a new DMCA notice on Friday calling for the removal of 13 Switch emulators' GitHub pages. Alongside any that still rely on Yuzu, the takedown targeted ...
IEEE

IoT-enabled Student Attendance System using RISC-V based Embedded System

Abstract: Inefficiencies, cumbersome processes, and a significant risk of errors, delays, and misuse often plague conventional methods for tracking student attendance. To address these challenges, ...
The Hacker News

Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support

Google finds nation-state hackers abusing Gemini AI for target profiling, phishing kits, malware staging, and model ...
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...