The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...
scmp.com

‘Specified persons’ will be able to decrypt devices in Hong Kong national security cases

Hong Kong authorities will be able to demand any “specified person” decrypt electronic devices during national security investigations and may punish suspects who provide wrong passwords or falsely ...
Democrat and Chronicle

ANY.RUN Scales Phishing Detection with New SSL Decryption Technology

DUBAI, DUBAI, UNITED ARAB EMIRATES, March 3, 2026 /EINPresswire.com/ — ANY.RUN, a provider of interactive malware analysis and threat intelligence solutions, has ...
SecurityWeek

Quantum Decryption of RSA Is Much Closer Than Expected

For decades, the quantum threat to RSA and ECC encryption has been tied to Shor’s algorithm and the assumption that we would need million-qubit quantum computers to make it practical. A newly ...
The Hacker News

VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption

The pro-Russian hacktivist group known as CyberVolk (aka GLORIAMIST) has resurfaced with a new ransomware-as-a-service (RaaS) offering called VolkLocker that suffers from implementation lapses in test ...
Ars Technica

Oops. Cryptographers cancel election results after losing decryption key.

One of the world’s premier security organizations has canceled the results of its annual leadership election after an official lost an encryption key needed to unlock results stored in a verifiable ...