Professional networks and essential tools are under fire this week as North Korean hackers escalate their Contagious Interview campaign, targeting developers with backdoor-laden VS Code projects. A separate operation hunts high-value individuals on LinkedIn using complex DLL sideloading techniques to deliver RAT. Amidst these targeted social engineering threats, web security faces its own critical update; Google has released Chrome version 144 to patch a high-severity race condition in the V8 engine that exposes users to potential memory corruption and remote code execution. Read on for more.
01
North Korean hackers associated with the Contagious Interview campaign are targeting developers by using malicious Microsoft VS Code projects to deliver backdoor malware.
02
Hackers are using LinkedIn messages to distribute RAT, targeting high-value individuals. The attack involves a self-extracting archive containing a PDF reader, a malicious DLL, a Python interpreter, and a decoy RAR file.
03
Google released Chrome version 144.0.7559.96/.97, fixing a high-severity vulnerability (CVE-2026-1220) in the V8 engine. This race condition could lead to memory corruption or arbitrary code execution.
04
The VoidLink malware framework, targeting Linux cloud systems, was developed by a single person using AI tools, specifically the TRAE SOLO assistant within an AI-centric IDE.
05
Hackers are running a phishing campaign impersonating LastPass to steal master passwords, using fake maintenance emails with urgency-driven tactics.
06
Two vulnerabilities in the Chainlit framework (CVE-2026-22218 and CVE-2026-22219) expose risks in AI applications' backend infrastructure, potentially compromising sensitive data and cloud resources.
07
A phishing campaign has been identified targeting Afghan government employees with emails disguised as official correspondence from the office of the prime minister. The campaign uses a decoy document to deliver FalseCub malware.
08
A set of three security vulnerabilities has been identified in Anthropic's mcp-server-git. These flaws can be exploited to read or delete arbitrary files and execute code through prompt injection.
09
The European Commission proposed new cybersecurity legislation to remove high-risk suppliers from telecommunications networks and strengthen defenses against cyber threats targeting critical infrastructure.
10
Tudou Guarantee, a major scam marketplace, is shutting down its Telegram operations due to sanctions from the U.S. and the U.K.
