WhatsApp Web malware spreads banking Trojan automatically

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.
GitHub

Python script to decrypt aoe2campaign.gpv files, and two methods of extracting the AES keys to do so.

Currently as of AoE2DE update: Update 158041, only Memory Dump script 2 is working (titled Dump gpv keys, iv [Method 2] and dump decrypted campaigns ) Update 130746, only Memory Dump script 1 is ...
Hosted on MSN

Make Python scripts smarter with regex: 5 practical RE examples

If you work with strings in your Python scripts and you're writing obscure logic to process them, then you need to look into regex in Python. It lets you describe patterns instead of writing ...
The Hacker News

DarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users Worldwide

The threat actor behind two malicious browser extension campaigns, ShadyPanda and GhostPoster, has been attributed to a third attack campaign codenamed DarkSpectre that has impacted 2.2 million users ...
GitHub

AI-Powered Remote Linux Server Management via MCP

"Install nginx on my server and configure it with SSL" "Run complete system diagnostics and tell me if anything looks wrong" "Find all log errors from the last hour and summarize them" "Save this ...
The Hacker News

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The vulnerability, tracked as CVE-2025-14847 (CVSS score: 8.7), ...