The Hacker News

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked updates, fixed in v8.8.9 ...

LummaStealer infections surge after CastleLoader malware campaigns

A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
ConsumerAffairs

Express Scripts Reviews

I love Express Script, they are great! I get my meds cheap and the pharmacist are all helpful. I cannot say that for all customer service people but they do a great job as well. Just like every ...
GitHub

Lua Manifest Updater (LMU)

Lua Manifest Updater (LMU) is a user-friendly tool designed to update Lua files with the latest manifest IDs for Steam games, streamlining the process of keeping game configurations current. Note: ...
GitHub

YoloWingPixie/dcs-world-schema

This project provides a comprehensive YAML-based schema definition for the DCS World API. The goal is to create a complete schema that can be used by LSP servers to provide extremely strict and ...