Category: Hacking News
-
LiteLLM Python Package With 95 Million Downloads Compromised by TeamPCP Hackers
LiteLLM Python Package With 95 Million Downloads Compromised by TeamPCP Hackers A widely used open-source Python library was compromised on the Python Package Index (PyPI). Versions 1.82.7 and 1.82.8 of the package, which route requests across various LLM providers and have over 95 million monthly downloads, were found to contain a sophisticated backdoor by security…
-
U.S. DOJ Charged 54 in Connection With ATM Hacking Attack by Deploying Ploutus Malware
U.S. DOJ Charged 54 in Connection With ATM Hacking Attack by Deploying Ploutus Malware The U.S. Department of Justice (DOJ) has charged 54 individuals in a sweeping crackdown on a transnational cyber-physical attack network. The indictments, announced by U.S. Attorney Lesley A. Woods, allege a massive conspiracy involving “ATM jackpotting” to fund Tren de Aragua…
-
Poland Arrested Suspected Russian Citizen Hacking for Local Organizations Computer Networks
Poland Arrested Suspected Russian Citizen Hacking for Local Organizations Computer Networks Polish authorities have arrested a Russian citizen suspected of conducting unauthorized cyberattacks against the computer networks of local organizations. The arrest marks a significant development in the country’s efforts to combat cybercrime targeting Polish and European businesses. On November 16, 2025, officers from the…
-
Fired Techie Admits Hacking Employer’s Network in Retaliation for Termination
Fired Techie Admits Hacking Employer’s Network in Retaliation for Termination A former IT contractor from Ohio has admitted to launching a cyberattack against his employer’s network in retaliation for being terminated, federal prosecutors announced this week. Maxwell Schultz, 35, of Columbus, Ohio, pleaded guilty to computer fraud charges after leading a technical attack that locked thousands…
-
Darknet Market Escrow Systems is Vulnerable to Administrator Exit Scams
Darknet Market Escrow Systems is Vulnerable to Administrator Exit Scams Darknet markets, operating beyond the reach of traditional payment processors and legal systems, rely on escrow systems to secure cryptocurrency transactions between buyers and vendors. These systems, using multisignature wallets and automated release mechanisms, aim to ensure transaction security and facilitate dispute resolution. However, vulnerabilities…
-
Gamers Playing Call of Duty Hacked – RCE Exploited Let Players Hack Other Players’ PCs
Gamers Playing Call of Duty Hacked – RCE Exploited Let Players Hack Other Players’ PCs Call of Duty: WWII has been pulled offline after reports of a serious remote code execution vulnerability that allowed malicious players to take complete control of other gamers’ computers during live multiplayer matches. On Saturday, the Call of Duty development…
-
New “123 | Stealer” Advertised on Underground Hacking Forums for $120 Per Month
New “123 | Stealer” Advertised on Underground Hacking Forums for $120 Per Month A new credential-stealing malware dubbed “123 | Stealer” has surfaced on underground cybercrime forums, being marketed by threat actor “koneko” for $120 per month. This malware-as-a-service (MaaS) offering represents the latest evolution in information stealer technology, combining sophisticated data exfiltration capabilities with…
-
Hackers Advertising New Blackhat Tool Nytheon AI on Popular Hacking Forums
Hackers Advertising New Blackhat Tool Nytheon AI on Popular Hacking Forums A sophisticated new threat platform, Nytheon AI, has emerged, which combines multiple uncensored large language models (LLMs) built specifically for malicious activities. The platform, discovered by Cato CTRL, is being actively promoted on popular hacking forums, including XSS and various Telegram channels, representing a…
-
Beware Developers! Malicious NPM Packages Targeting PayPal Users to Steal Sensitive Data
Beware Developers! Malicious NPM Packages Targeting PayPal Users to Steal Sensitive Data FortiGuard Labs, Fortinet’s AI-driven threat intelligence arm, has uncovered a series of malicious NPM packages designed to steal sensitive information from developers and target PayPal users. Detected between March 5 and March 14, 2025, these packages were published by a threat actor using…