US Government officials targeted with texts and AI-generated deepfake voice messages impersonating senior U.S. officials

2025. 05. 20.

Saja DPRK Employment Scam Network Nisos reports a DPRK employment scam network posing as Polish and US nationals, using fake GitHub accounts and portfolio websites to deceive companies into hiring for remote tech roles https://nisos.com/research/saja-dprk-employment-scam/

2025. 05. 20.

Malicious Koishi Chatbot Plugin Exfiltrates Messages Triggered by 8-Character Hex Strings Socket’s Threat Research Team uncovered a malicious npm package, koishi-plugin-pinhaofa, that exfiltrates messages from Koishi chatbots using 8-character hex strings, potentially leaking sensitive data to a hardcoded QQ account

2025. 05. 20.

Popular VMware tool RVTools was hacked to spread Bumblebee malware via its official site. RVTools Official Site Hacked to Deliver Bumblebee Malware via Trojanized Installer

2025. 05. 20.

Analysis of DPRK's Kimsuky APT Group (Powershell Payloads one of them attributed to XWorm RAT)

2025. 05. 20.

CVE-2025-24203 : PoC Released - iOS Kernel Flaw Allows File System Modification Without Jailbreak

2025. 05. 19.