The Hacker News

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...
SecurityWeek

‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials

The PCPJack worm targets cloud environments and vulnerable web applications to remove TeamPCP infections and steal ...

Usage-based pricing killing your vibe - here's how to roll your own local AI coding agents

With model devs pushing more aggressive rate limits, raising prices, or even abandoning subscriptions for usage-based pricing ...

This Linux distro that already rivals Windows 11 just got a significant performance boost0 0

There are several Linux distros that people say are good alternatives to Windows 11. This particular one, called CachyOS, ...

Linux ‘Copy Fail’ flaw lets anyone hijack system privileges. Update ASAP

Copy Fail is a critical Linux vulnerability that lets any local user corrupt cached files and escalate to admin. Update your ...

U.S. government warns of severe CopyFail bug affecting major versions of Linux

U.S. cybersecurity agency CISA says the CopyFail bug is being actively used in hacking campaigns, and poses a major risk to servers and datacenters that rely on Linux.
The Hacker News

⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More

Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain campaign, GitHub RCE & major ...

Linux Copy Bug: Trivially Exploitable, Impacts Crypto Infrastructure

Trivially Exploitable, Impacts Crypto Infrastructure. Security researchers have highlighted a Linux vulnerability nicknamed Copy Fail that could impact a broad swath of open-source distributions ...

"Copy Fail" is a rare Linux bug that can turn an unprivileged user into a root admin in seconds

Copy Fail could represent a significant security risk in the making. The vulnerability was discovered by researchers at ...
Hackaday

This Week In Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, And Backdoored Tools

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...

New stealthy Quasar Linux malware targets software developers

A previously undocumented Linux implant named Quasar Linux (QLNX) is targeting developers' systems with a mix of rootkit, ...