The Hacker News

Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities

Asian state-linked hackers breached 70 entities, used phishing, N-day exploits, and rootkits for global espionage.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.