News

The Hacker News1h
U.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker Scheme
The IT worker scheme, also tracked as Nickel Tapestry, Wagemole, and UNC5267, involves North Korean actors using a mix of ...
The Hacker News6h
Microsoft Patches 130 Vulnerabilities, Including Critical Flaws in SPNEGO and SQL Server
"Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a ...
The Hacker News11h
Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware
Hackers are exploiting Shellter’s leaked Elite license to distribute Lumma Stealer, SectopRAT, and more. This affects ...
The Hacker News21h
Anatsa Android Banking Trojan Hits 90,000 Users with Fake PDF App on Google Play
Anatsa banking malware targets North American users via Google Play, leading to credential theft and financial fraud ...
The Hacker News3h
Chinese Hacker Xu Zewei Arrested for Ties to Silk Typhoon Group and U.S. Cyber Attacks
Chinese national Xu Zewei arrested in Milan for links to Silk Typhoon and cyber attacks on U.S. agencies, including Microsoft Exchange breaches ...
The Hacker News1d
CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation
CISA adds four critical vulnerabilities to its KEV list, with active exploitation confirmed. Federal agencies must update by ...
The Hacker News1d
Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms
Russian organizations have been targeted by Batavia spyware in a phishing attack, exfiltrating documents and system info.
The Hacker News1d
SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools
According to data compiled by Kaspersky, small- and medium-sized businesses (SMBs) are being increasingly targeted by cyber ...
The Hacker News1d
5 Ways Identity-based Attacks Are Breaching Retail
Major retailers like Adidas and The North Face were breached using identity-driven tactics, exposing key security gaps.
The Hacker News1d
BaitTrap: Over 17,000 Fake News Websites Caught Fueling Investment Fraud Globally
A newly released report by cybersecurity firm CTM360 reveals a large-scale scam operation utilizing fake news websites—known ...
The Hacker News1d
⚡ Weekly Recap: Chrome 0-Day, Ivanti Exploits, MacOS Stealers, Crypto Heists and More
A China-linked intrusion set known as Houken targeted a number of entities spanning governmental, telecommunications, media, ...
The Hacker News2d
TAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail Sectors
The activity has been attributed by Recorded Future's Insikt Group to a threat actor tracked as TAG-140, which it said ...