APT37 hackers use new malware to breach air-gapped networks

North Korean hackers are deploying newly uncovered tools to move data between internet-connected and air-gapped systems, spread via removable drives, and conduct covert surveillance.
The Hacker News

ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks

North Korea-linked ScarCruft’s Ruby Jumper uses Zoho WorkDrive C2 and USB malware to breach air-gapped systems for ...
Bleeping Computer

Hackers exploit critical React Native Metro bug to breach dev systems

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native to deliver malicious payloads for Windows and Linux. On Windows, an ...
The New York Times

Students Are Skipping the Hardest Part of Growing Up

Mr. Shirky, a vice provost at New York University, has been helping faculty members and students adapt to digital tools since 2015. Back in 2023, when ChatGPT was still new, a professor friend had a ...
Carscoops

Toyota Debuts Electric Pickup For Europe, And It’s Just The Beginning

The Hilux has spent decades surviving anything the world throws at it, from mud and floods to plummeting from a Top Gear crane – though not being dropped from a helicopter. Now Toyota is testing its ...
CSOonline

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...
Dark Reading

Hamas-Linked Hackers Probe Middle Eastern Diplomats

A cyber threat group affiliated with Hamas has been conducting espionage across the Middle East. "Wirte" — tracked by Palo Alto's Unit 42 as "Ashen Lepus" — has been spying on regional government ...
Ars Technica

Admins and defenders gird themselves against maximum-severity server vuln

Security defenders are girding themselves in response to the disclosure of a maximum-severity vulnerability disclosed Wednesday in React Server, an open-source package that’s widely used by websites ...
Flightglobal

DARPA launches new X-plane competition for uncrewed cargo drone with improved payload-to-weight ratio

The Pentagon’s secretive technology incubator has launched its latest X-plane competition, this time with an eye toward identifying concepts for a highly efficient uncrewed cargo drone. The US Defense ...
Dark Reading

ShadowRay 2.0 Turns AI Clusters into Crypto Botnets

A threat actor is actively exploiting a known, but disputed, remote code execution (RCE) vulnerability in the open source Ray framework to hijack AI compute infrastructure and using it to attack other ...
SpaceNews

Semiconductor startup to fly payloads on Falcon 9 boosters

A SpaceX Falcon 9 booster lands after launching the Sentinel-6 mission for NASA and the European Space Agency Nov. 21, 2020. Credit: SpaceX WASHINGTON — A startup plans to test technology to produce ...
The Hacker News

Qilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attack

The ransomware group known as Qilin (aka Agenda, Gold Feather, and Water Galura) has claimed more than 40 victims every month since the start of 2025, barring January, with the number of postings on ...