The Hacker News

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

DRILLAPP JavaScript backdoor targets Ukraine in Feb 2026, abusing Edge debugging features to spy via camera, microphone, and ...
XDA Developers on MSN

Google kept featuring this Chrome extension for months after it turned malicious

How can an extension change hands with no oversight?
Cybernews

Threat actors linked to Russia target Ukrainian entities with new backdoor

The campaign, observed in February 2026, has been assessed to share overlaps with a prior campaign mounted by Laundry Bear, a group tracked by Microsoft as Void Blizzard.
PC Magazine

Installing Software From an ISO File? Follow This Simple, Step-by-Step Guide

Mount the ISO File in Windows Download the ISO image, open File Explorer, and right-click on the file. From the pop-up menu, select the Mount command. Alternatively, you can simply double-click the ...

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
TWCN Tech News

Download Liked Instagram Photos to Dropbox or Google Drive

Being the most popular photo-sharing platform mainly for mobile and selfie addicted people, Instagram has several features to browse images from desktop and mobile. However, it doesn’t have any option ...
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...