Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-03 02:00 PST
- Picklescan Bugs Allow Malicious PyTorch Models to Evade Scans and Execute Code
The Hacker News • 2025-12-03 01:30 • thehackernews.com
Three critical security flaws have been disclosed in an open-source utility called Picklescan that could allow malicious actors to execute arbitrary code by loading untrusted PyTorch models, effectively bypassing the tool’s protections.
Picklescan, developed and maintained by Matthieu Maitre (@mmaitre314), is a security scanner that’s designed to parse Python pickle files and detect suspicious
https://thehackernews.com/2025/12/picklescan-bugs-allow-malicious-pytorch.html - Malicious Rust Crate Delivers OS-Specific Malware to Web3 Developer Systems
The Hacker News • 2025-12-03 00:39 • thehackernews.com
Cybersecurity researchers have discovered a malicious Rust package that’s capable of targeting Windows, macOS, and Linux systems, and features malicious functionality to stealthily execute on developer machines by masquerading as an Ethereum Virtual Machine (EVM) unit helper tool.
The Rust crate, named “evm-units,” was uploaded to crates.io in mid-April 2025 by a user named “ablerust,”
https://thehackernews.com/2025/12/malicious-rust-crate-delivers-os.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
