The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
Computerworld

Red Hat Defends Kernel Code Obfuscation

After watching Oracle eat away at Red Hat Enterprise Linux (RHEL) business with Oracle Enterprise Linux (OUL), Red Hat has decided to launch a competitive strategy with its RHEL source code that will ...
InfoWorld

QR codes become the vehicle for malware in new technique

A newly-discovered malicious package with layers of obfuscation is disguised as a utility library, with malware essentially hiding in plain sight in embedded QR codes. QR codes are ubiquitous these ...
Dark Reading

OBSCURE#BAT Malware Highlights Risks of API Hooking

A malware campaign dubbed "OBSCURE#BAT" is making effective use of heavily obfuscated code and evasion techniques like API hooking to trick unsuspecting users into downloading an advanced and highly ...