Bleeping Computer

APT28 hackers deploy customized variant of Covenant open-source tool

The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations. Researchers at cybersecurity ...
The Hacker News

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

New hacking cluster exploits web servers and Mimikatz to infiltrate Asian infrastructure for long-term espionage in aviation, ...
The Hacker News

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

Malicious Packagist Laravel packages install a cross-platform RAT enabling remote shell access and system reconnaissance via C2 server.
GitHub

Web Search MCP Server for use with Local LLMs

A TypeScript MCP (Model Context Protocol) server that provides comprehensive web search capabilities using direct connections (no API keys required) with multiple tools for different use cases.

Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.
Indiatimes

Can you use WhatsApp Web voice and video calls in the UAE after recent updates?

WhatsApp has begun a global rollout of voice and video calling features on WhatsApp Web, allowing users to make and receive calls directly from their browser without installing the desktop app. This ...
The Indian Express

No app required: WhatsApp Web brings voice and video calling to web browsers; here is how to use it

WhatsApp is making its web version more functional. The platform is rolling out voice and video calls directly in web browsers, allowing users to make calls on WhatsApp Web without downloading the ...