The Hacker News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

Signal issues scam warning to users after hackers target officials

Signal says its systems are secure but it is taking reports of targeted attempts to hack some officials "very seriously".

State-linked actors targeted US networks in lead-up to Iran war

Researchers found backdoors installed on U.S. company networks in the weeks prior to the U.S. and Israeli bombing campaign.
Cyber Daily

Exclusive: Safepay ransomware claims hack of Smile Team Orthodontics

The Safepay ransomware group has listed a New South Wales-based dental practice as a victim on its darknet leak site and has published a raft of documents stolen during the breach. Smile Team ...
Cyber Daily

US cyber agency warns of exploitation of three vulnerabilities, including SolarWinds and Ivanti bugs

Hackers are targeting vulnerabilities in Ivanti Endpoint Manager, SolarWinds Web Help Desk, and VMware Workspace ONE.
CSO Online

Devs looking for OpenClaw get served a GhostClaw RAT

GhostClaw poses as an OpenClaw installer package, stealing system credentials and sensitive data before deploying a persistent RAT.