The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.
GitHub

Tools for installing ARK Survival Ascended Dedicated Server on Linux

A management console (manage.py) is included for managing all maps in the cluster. Scripts for starting all, stopping all, updating, backing up user data, and restoring user data are included for ...

APT37 hackers use new malware to breach air-gapped networks

North Korean hackers are deploying newly uncovered tools to move data between internet-connected and air-gapped systems, spread via removable drives, and conduct covert surveillance.
The Hacker News

Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware

Four rogue NuGet packages and one npm package stole ASP.NET Identity data, deployed C2 backdoors, and reached over 50,000 downloads before removal.
Make Tech Easier

This Tool Lets Me Open Spreadsheets In The Terminal, And It’s More Useful Than It Sounds

Xleak is a simple terminal tool that lets you open and inspect Excel files instantly, without ever leaving your command line.