North Korea-linked threat actor Slow Pisces, which was allegedly behind the Bybit hack in 2025, is reportedly targeting developers with a stealer malware, camouflaged as a coding assignment, according to Palo Alto Networks Unit 42. It is luring developers through LinkedIn, pretending to be potential employers offering coding projects and challenges, which carry the malware. The malicious payload selectively targets individuals based on factors such as IP address, geolocation and time. The malware can steal sensitive information from infected macOS systems.
Hackers Actively Exploiting Critical Exchange & SharePoint Server Vulnerabilities
Microsoft has warned that cybercriminals are increasingly exploiting critical vulnerabilities in on-premises Exchange and SharePoint Servers. New techniques like NTLM relay and credential leakage enable
