The Hacker News

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...
The Hacker News

New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions

CVE-2026-31431 CVSS 7.8 flaw since 2017 enables root via 732-byte exploit, impacting major Linux distributions.

New 'Copy Fail' Flaw In Linux Kernel Lets Any Local User Seize Root Access: Here's How To Fix It

The flaw allows an unprivileged local user to write four controlled bytes into the page cache of any readable file on a Linux ...

'Firestarter' malware survives Cisco firewall patches

Cisco has confirmed that the ArcaneDoor threat actor deployed a persistence mechanism that isn't handled by the security ...
GitHub

linux_tolower_remote.S

hackerhouse-opensource / shellcode Public Notifications You must be signed in to change notification settings Fork 23 Star 51 Code Files master shellcode linux-x86 linux_tolower_remote.S ...
DMR News

CISA Warns FIRESTARTER Malware Persists On Cisco Devices After Patching In Federal Network Breach

The Cybersecurity and Infrastructure Security Agency has disclosed that a U.S. federal civilian agency was compromised by ...

Firestarter malware survives Cisco firewall updates, security patches

Cybersecurity agencies in the U.S. and U.K. are warning about a custom malware called Firestarter persisting on Cisco ...
Network World

Infected Cisco firewalls need cold start to clear persistent Firestarter backdoor

Admins are being warned by cyber experts from the US and UK that this is part of continuing campaign to crack Cisco firewalls ...
TechCrunch

France to ditch Windows for Linux to reduce reliance on US tech

France is trying to move on from Microsoft Windows. The country said it plans to move some of its government computers currently running Windows to the open source operating system Linux to further ...
Bleeping Computer

New AgingFly malware used in attacks on Ukraine govt, hospitals

A new malware family named ‘AgingFly’ has been identified in attacks against local governments and hospitals that steal authentication data from Chromium-based browsers and WhatsApp messenger. The ...
GitHub

win-x64-DynamicKernelWinExecCalc.asm

# 64bit Windows 10 shellcode that dynamically resolves the base address of kernel32.dll via PEB & ExportTable method. # Contains no Null bytes (0x00), and therefor will not crash if injected into ...