Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers with cryptocurrency-related tasks.
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...
TechAnnouncer

Stay Updated with the Latest HN News: Your Daily Tech Digest

Imagine starting your day with a quick, digestible summary of the most important tech conversations happening on Hacker News.
Opinion
PCMagOpinion

I Tried the Flipper Zero for Fun and Ended Up Hacking Everything in My Home

It looks like a cute little dolphin-themed toy, but don't be fooled—the Flipper Zero is a surprisingly powerful learning tool for hacking, and if you're not careful, it can get you into some very ...
Hackaday

Hackaday Podcast Episode 355: Person Detectors, Walkie Talkies, Open Smartphones, And A WiFi Traffic Light

Another chilly evening in Western Europe, as Elliot Williams is joined this week by Jenny List to chew the fat over the ...
The Hacker News

Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access

Cybersecurity researchers have discovered malicious Google Chrome extensions that come with capabilities to hijack affiliate links, steal data, and collect OpenAI ChatGPT authentication tokens. One of ...
GitHub

Block or report GoldCoastUnlocks

Gives anyone access to an OpenAI/OpenRouter API key free at 10 cents/week. Self-hostable. Useful as a backend if you're building pure front-end LLM apps ...
CNX Software

M5MonsterC5 hacking tool adds ESP32-C5 and 5 GHz Wi-Fi 6 support to M5Stack Cardputer ADV and Tab5

Developed by Laboratorium in Poland, the M5MonsterC5 is an ESP32-C5-based “Marauder” hacking tool designed to work with M5Stack Cardputer ADV or M5Stack Tab5. It gets connected to the Cardputer ADV or ...