The Hacker News

New SparrowDoor Backdoor Variants Found in Attacks on U.S. and Mexican Organizations

New SparrowDoor Backdoor Variants Found in Attacks on U...

Mar 26, 2025 0

The Chinese threat actor known as FamousSparrow has been linked to a cyber attac...

EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware

EncryptHub Exploits Windows Zero-Day to Deploy Rhadaman...

Mar 26, 2025 0

The threat actor known as EncryptHub exploited a recently-patched security vulne...

RedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt Deployment

RedCurl Shifts from Espionage to Ransomware with First-...

Mar 26, 2025 0

The Russian-speaking hacking group called RedCurl has been linked to a ransomwar...

Malicious npm Package Modifies Local 'ethers' Library to Launch Reverse Shell Attacks

Malicious npm Package Modifies Local 'ethers' Library t...

Mar 26, 2025 0

Cybersecurity researchers have discovered two malicious packages on the npm regi...

Sparring in the Cyber Ring: Using Automated Pentesting to Build Resilience

Sparring in the Cyber Ring: Using Automated Pentesting ...

Mar 26, 2025 0

“A boxer derives the greatest advantage from his sparring partner…” — Epictetu...

How PAM Mitigates Insider Threats: Preventing Data Breaches, Privilege Misuse, and More

How PAM Mitigates Insider Threats: Preventing Data Brea...

Mar 26, 2025 0

When people think of cybersecurity threats, they often picture external hackers ...

Hackers Using E-Crime Tool Atlantis AIO for Credential Stuffing on 140+ Platforms

Hackers Using E-Crime Tool Atlantis AIO for Credential ...

Mar 26, 2025 0

Threat actors are leveraging an e-crime tool called Atlantis AIO Multi-Checker t...

Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks

Zero-Day Alert: Google Releases Chrome Patch for Exploi...

Mar 26, 2025 0

Google has released out-of-band fixes to address a high-severity security flaw i...

New Security Flaws Found in VMware Tools and CrushFTP — High Risk, No Workaround

New Security Flaws Found in VMware Tools and CrushFTP —...

Mar 26, 2025 0

Broadcom has issued security patches to address a high-severity security flaw in...

Researchers Uncover ~200 Unique C2 Domains Linked to Raspberry Robin Access Broker

Researchers Uncover ~200 Unique C2 Domains Linked to Ra...

Mar 25, 2025 0

A new investigation has unearthed nearly 200 unique command-and-control (C2) dom...

Chinese Hackers Breach Asian Telecom, Remain Undetected for Over 4 Years

Chinese Hackers Breach Asian Telecom, Remain Undetected...

Mar 25, 2025 0

A major telecommunications company located in Asia was allegedly breached by Chi...

AI-Powered SaaS Security: Keeping Pace with an Expanding Attack Surface

AI-Powered SaaS Security: Keeping Pace with an Expandin...

Mar 25, 2025 0

Organizations now use an average of 112 SaaS applications—a number that keeps gr...

Hackers Use .NET MAUI to Target Indian and Chinese Users with Fake Banking, Social Apps

Hackers Use .NET MAUI to Target Indian and Chinese User...

Mar 25, 2025 0

Cybersecurity researchers are calling attention to an Android malware campaign t...

INTERPOL Arrests 306 Suspects, Seizes 1,842 Devices in Cross-Border Cybercrime Bust

INTERPOL Arrests 306 Suspects, Seizes 1,842 Devices in ...

Mar 25, 2025 0

Law enforcement authorities in seven African countries have arrested 306 suspect...

Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication

Critical Ingress NGINX Controller Vulnerability Allows ...

Mar 24, 2025 0

A set of five critical security shortcomings have been disclosed in the Ingress ...

Microsoft Adds Inline Data Protection to Edge for Business to Block GenAI Data Leaks

Microsoft Adds Inline Data Protection to Edge for Busin...

Mar 24, 2025 0

Microsoft on Monday announced a new feature called inline data protection for it...

VanHelsing RaaS Launch: 3 Victims, $5K Entry Fee, Multi-OS, and Double Extortion Tactics

VanHelsing RaaS Launch: 3 Victims, $5K Entry Fee, Multi...

Mar 24, 2025 0

A ransomware-as-a-service (RaaS) operation called VanHelsing has already claimed...

⚡ THN Weekly Recap: GitHub Supply Chain Attack, AI Malware, BYOVD Tactics, and More

⚡ THN Weekly Recap: GitHub Supply Chain Attack, AI Mal...

Mar 24, 2025 0

A quiet tweak in a popular open-source tool opened the door to a supply chain br...

VSCode Marketplace Removes Two Extensions Deploying Early-Stage Ransomware

VSCode Marketplace Removes Two Extensions Deploying Ear...

Mar 24, 2025 0

Cybersecurity researchers have uncovered two malicious extensions in the Visual ...

How to Balance Password Security Against User Experience

How to Balance Password Security Against User Experience

Mar 24, 2025 0

If given the choice, most users are likely to favor a seamless experience over c...

Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks

Critical Next.js Vulnerability Allows Attackers to Bypa...

Mar 24, 2025 0

A critical security flaw has been disclosed in the Next.js React framework that ...

Coinbase Initially Targeted in GitHub Actions Supply Chain Attack; 218 Repositories' CI/CD Secrets Exposed

Coinbase Initially Targeted in GitHub Actions Supply Ch...

Mar 23, 2025 0

The supply chain attack involving the GitHub Action "tj-actions/changed-files" s...

GitHub Supply Chain Breach: Coinbase Attack Exposes 218 Repositories, Leaks CI/CD Secrets

GitHub Supply Chain Breach: Coinbase Attack Exposes 218...

Mar 23, 2025 0

The supply chain attack involving the GitHub Action "tj-actions/changed-files" s...

U.S. Treasury Lifts Tornado Cash Sanctions Amid North Korea Money Laundering Probe

U.S. Treasury Lifts Tornado Cash Sanctions Amid North K...

Mar 22, 2025 0

The U.S. Treasury Department has announced that it's removing sanctions against ...

1
2
3
4
5

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies.