News

The Hacker News17h
Gold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to Targets
The Initial Access Broker (IAB) known as Gold Melody has been attributed to a campaign that exploits leaked ASP.NET machine ...
The Hacker News4h
U.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker Scheme
The IT worker scheme, also tracked as Nickel Tapestry, Wagemole, and UNC5267, involves North Korean actors using a mix of ...
The Hacker News9h
Microsoft Patches 130 Vulnerabilities, Including Critical Flaws in SPNEGO and SQL Server
"Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a ...
The Hacker News13h
Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware
Hackers are exploiting Shellter’s leaked Elite license to distribute Lumma Stealer, SectopRAT, and more. This affects ...
The Hacker News11h
Automation ≠ Autopilot: Rethinking AI in Corporate Security and Compliance
AI accelerates security but needs human oversight to prevent risks like misconfigurations and compliance errors. Ensure AI ...
The Hacker News6h
Chinese Hacker Xu Zewei Arrested for Ties to Silk Typhoon Group and U.S. Cyber Attacks
Chinese national Xu Zewei arrested in Milan for links to Silk Typhoon and cyber attacks on U.S. agencies, including Microsoft Exchange breaches ...
The Hacker News1d
Anatsa Android Banking Trojan Hits 90,000 Users with Fake PDF App on Google Play
Anatsa banking malware targets North American users via Google Play, leading to credential theft and financial fraud ...
The Hacker News1d
CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation
CISA adds four critical vulnerabilities to its KEV list, with active exploitation confirmed. Federal agencies must update by ...
The Hacker News1d
Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms
Russian organizations have been targeted by Batavia spyware in a phishing attack, exfiltrating documents and system info.
The Hacker News1d
SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools
According to data compiled by Kaspersky, small- and medium-sized businesses (SMBs) are being increasingly targeted by cyber ...
The Hacker News1d
5 Ways Identity-based Attacks Are Breaching Retail
Major retailers like Adidas and The North Face were breached using identity-driven tactics, exposing key security gaps.
The Hacker News1d
BaitTrap: Over 17,000 Fake News Websites Caught Fueling Investment Fraud Globally
A newly released report by cybersecurity firm CTM360 reveals a large-scale scam operation utilizing fake news websites—known ...