CSOonline

Logic bombs explained: Definition, examples, prevention

What is a logic bomb? A logic bomb is a set of instructions embedded in a software system that, if specified conditions are met, triggers a malicious payload to take actions against the operating ...
Dark Reading

Attackers Are Already Exploiting ChatGPT to Write Malicious Code

Since OpenAI released ChatGPT in late November, many security experts have predicted it would only be a matter of time before cybercriminals began using the AI chatbot for writing malware and enabling ...
Computerworld

Stealthy attack serves malicious code only once

A new hacking method is causing concern for the lengths it goes to avoid detection by security software and researchers. The attack involves a Web site that has been hacked to host malicious code, an ...
SDxCentral

Check Point: ChatGPT Can Compose Malicious Emails, Code

Check Point Research today published a study into OpenAI’s ChatGPT and Codex, highlighting how threat actors can use these tools to produce malicious emails, code, and a full infection chain. ChatGPT ...
PC Gamer

GitHub is under automated attack by millions of cloned repositories filled with malicious code

Thanks to a combination of sophisticated methodology and social engineering, this particular attack seems to be very difficult to stop. When you purchase through links on our site, we may earn an ...

Malicious AI-made extension with ransomware capabilities sneaks on to Microsoft's official VS Code marketplace - so devs beware

A malicious extension was published on Microsoft’s official VS Code marketplace, and was able to remain there for some time gathering downloads and infecting people’s computers.
Lifehacker

Beware This Nightmarish New Android Banking Malware

Malware is an unfortunate reality in the digital world we’ve built for ourselves. Since all of our devices run on code, bad actors can use malicious code to take over those devices, or install ...
Threat Post

Malicious npm Code Packages Built for Hijacking Discord Servers

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases. A series of malicious packages in the Node.js package manager (npm) code ...
ZDNet

Developers, watch your code: Official Python repository spread malicious projects

PyPI is the official Python Package Index that currently contains 500,972 projects, 5,228,535 million releases, 9,950,103 million files, and 770,841 users. PyPI helps users locate and install software ...
WTSP

Yes, scammers are using fake QR codes to put malware on your phone, access your accounts

ST. PETERSBURG, Fla. — From restaurant menus to parking meters, and even on your screen while watching 10 Tampa Bay newscasts, QR codes are everywhere. The simple, square barcodes known as Quick ...
Ars Technica

4 vulnerabilities under attack give hackers full control of Android devices

Unknown hackers have been exploiting four Android vulnerabilities that allow the execution of malicious code that can take complete control of devices, Google warned on Wednesday. All four of the ...