All News

The Hacker News

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgQHttkRWlhnoY7X21do0-v7c6Hj3XTm4hnSkq55zBHP-kg_1DZjmCGSM24vn3M8Q1AnbGCELSh5c96bdCdFv-Bk_Yp7dScb9Oc5s1aMUXYfD4o9XFgbiRMOshxPnecJRXCVV7xG3tkXnn2Zs864ycdmnLthzQ42zoZ2Kb86LFuwGfsi4030jzHIZ2L7NA/s728-rw-e365/bitdefender-main.jpg

The Hacker News

January 5, 2026

The Security Platform Is Dead. Long Live the Security Platform

Why security platforms rise as tool sprawl hits 45 tools per enterprise, consolidation grows, and mid-market teams seek simpler, prevention-...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhFoSUYkZi1PnR7_XDnEwu_ZZaBhpLuCssykwEM8x8vGGWRH6fHkwyCqaMNWJ7DzZ5zi_fyabPUC8a8gszAcaSPncbhTOmmKZfZy8M-qTFjdU6Jlz87nV2oalablLAZENIsFU7MIleVfDgi_yYxqB1c3QpXlEyPW89xIwVmInLThmIrDdQosJR2iatZGhDr/s790-rw-e365/discord-malware.jpg

The Hacker News

January 5, 2026

New VVS Stealer Malware Targets Discord Accounts via Obfuscated Python Code

VVS Stealer is a Python-based malware sold on Telegram that steals Discord tokens, browser data, and credentials using heavy code obfuscatio...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEt7jwmcrKnbVzQYemp-nW0OkJvUUvJgNTgkW4ttQzYUncL_JDzqArCi8ZNriBIOsBW7BK5XlVLPSPAuQLLR7emfIQnmQOnY6CI-zJSXZhGeMjtiEHphLnBh-ujMgP5W3j24nFrYGGegsM7Eyqo1o18KAFiEY26mrc9F8KkZpENJYPM4dANATvt_UKlPk/s728-rw-e365/adaptive-main.jpg

The Hacker News

January 5, 2026

Deepfake Job Hires: When Your Next Breach Starts With an Interview

Deepfake-driven hiring fraud is rising, with fake employees gaining access, stealing data, and evading detection across organizations.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjaFyRmyuVgO_C0sj1T6dS6xOHtQzLfUUckXuj31BDmfIdvD6xMza5hxryu06NflKvAWIOrqiIl5qZRQRuiTXiRoGkzSSCmfffHmkoW6w1yu7wWkXbk3YnnPQojFwLfDhnCvmjU063dxagQoIPFtiyxLoBP-V36reDJ7__kmAZQ5UD4Ybva-cvjDryruo2W/s790-rw-e365/india.jpg

The Hacker News

January 2, 2026

Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia

Transparent Tribe (APT36) is linked to new cyber-espionage attacks using malicious LNK files, adaptive RATs, and long-term persistence again...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjOgqxWyZ5k1mEMGQ8sCbC-M19ff7_TVyt69pnktcYU9wNBJttxeAp9Cw3dzhrTdYwKNCYNPwOa_GV1OND0GP9cqYCLMO7A2vGJS14t32VoYAvv_R4NBlh1Jk7Cv8h3B_tp8uuHak1rB0vLwYycZHbpZc3KlWLQRXy5mg7Y_J7mC6zqepPwbuRNlArMGLE7/s790-rw-e365/main.jpg

The Hacker News

January 2, 2026

The ROI Problem in Attack Surface Management

Attack surface management ROI improves when ownership, exposure duration, and risky endpoints decline—not when asset counts rise.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiYs3DrTLoxNKDEunQc4yjZyAmnuhSyJGccrpxhneZyB6iJ29zkbfcoDpsPZlJYL59ZNTX09BS4FmbV_Yv2WjkB-mptBp_vVyYa4PpPY5jk73XydEvhAdyS-oHdUzSmbCobA7Gnnf6Iogvs3YdR2yC0XkkCGzdz3e9PQ3qg5kaVRVmn3OKxLbfaT2b0SIld/s790-rw-e365/phishing-email.jpg

The Hacker News

January 2, 2026

Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign

Attackers misused Google Cloud Application Integration to send 9,394 phishing emails from Google domains, bypassing filters and stealing cre...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjpopD3Sr47ByE_zUhbMp2X-Y6mYwjadauTKcWNbN0U0__mj7sWOxknQhTJ1O4n97vYFSsGrJ4NR1jA1GGpqNDWDqiZkBcJF9BXJ9GB6nkjqlizHrxSyd37gCO87MwUOcjLnCicQv5htud-3JzoTZeDO6qxHAtiFfbE4y7IK1QQnos0LYbrs4b3qZ2gq3Zk/s790-rw-e365/threatsday.jpg

The Hacker News

January 1, 2026

ThreatsDay Bulletin: GhostAd Drain, macOS Attacks, Proxy Botnets, Cloud Exploits, and 12+ Stories

The first ThreatsDay Bulletin of 2026 tracks GhostAd adware, macOS malware, proxy botnets, cloud exploits, and more emerging cyber threats.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiQtdlV7ySzud6pktbmLsSyAnWoLz3a-ROUuyJ1mvoIfcbCrlQkb2dQJ9TqxDFk3dtTqO7H2XEFznwMmOoM2CEGaU41loeAh4MYXWm5L3rVdUCH4WyVZlp68Z-dTthmsTAcrS3l9LIDxrmEIYkMGDgVAQYtfXgVPes9kB2F_ilQxWd8qeK0JCJbo1JUmQ6d/s790-rw-e365/botnet.jpg

The Hacker News

January 1, 2026

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and malware worldw...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgv_KQxQETJOGQo3bnCQJDl_q0JjioroSN5Jrh3NWhbSoQ0b5VbaBBfodYWplOfTNRyR-s08yD5yjWX0STJVTSjQIS-2iGk9fWae2WsFdFi7BgVVgBKMoeFc-5wSTHrmAV3XQ_201aIGRqiZROKfo0gzePyHDmBV3Y_SEMsJIx2id4Lc9Dg1oOb7VCvyXk/s790-rw-e365/Adapt-Browser-1.jpg

The Hacker News

January 1, 2026

How To Browse Faster and Get More Done Using Adapt Browser

Learn how a lightweight browser architecture can reduce overhead, improve performance, & help users browse faster while staying focused & pr...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgMbGd5gZt4LivTf91n0rkIqb96QTFiXAPUGZIjWetmK58EeBHuQNFM6PQ1WHeNdTsg5GmtM9qWLoNz1jXn9S1t_zbP02pp62aPKYqruzZ81_fqujiRFvpj1MTxKP9VA6jeNk2Xw4Szx1UJ3ndXXEaV9-T9e0uFqieAuvHlmLRiU2RjTEkDf-Ft9YL6pyx-/s790-rw-e365/crypto.jpg

The Hacker News

December 31, 2025

Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack

Trust Wallet confirmed a supply chain attack let hackers push a malicious Chrome extension update, draining $8.5 million from 2,520 wallets.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3BlrabuZMmyZXh7mVD8BfgxW1K7DaJwh4FqMKyPBod0SCwsR2L24g7oYk4e4hJnScEHlg4HMWEZ2041ZzwMnbs9gEQ0bNcCIu38ZhNtum_YNF01PEJBOI-O_qd4wSLxmYvrAvlnLugMGX9uolGrhsRvWT5uYX1p2z8YgwbY6qdgmJZcp5yPn6RlAhIMe2/s790-rw-e365/browser.jpg

The Hacker News

December 31, 2025

DarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users Worldwide

A China-linked threat actor used malicious browser extensions over seven years to steal data and corporate intelligence from Chrome, Edge, a...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_6aF_LtBQsxfp7ziJZ57TatgdnnjgWwDKQRdgCbPqj8o5Fk-wS94TV1LNcXqTTAr6sgpty7xjiZ58uFabTBr7az46u52ETTgROTfakpeYBSRAXMjrNkyWdCtJehPjCZGGFalG59NRL8VPfQbe-F9R8ZLmGQ0EBXw0bgh0XStROWKpyIio2-3MOK3qH1Z2/s790-rw-e365/ibm.jpg

The Hacker News

December 31, 2025

Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System

IBM disclosed a critical CVSS 9.8 authentication bypass in IBM API Connect that could allow remote access; patches are now available.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiLzpeFOZHp8C7GZ0cMe57PMU10zY3RqrxkvwgczNMI5wgXFupY9-FWJ9YcOxsXyp8CS2DeqAPdzbyWgRIORNHw07bTMNOSidgkAI7CHrQ58iw8E027cxPGaxNmpQYEooO2OyRlWRe96ebuX1wSLsqOB7doUZaKELDsTn-vh3ht6Ti2RN1VTnTfsTtu13gA/s790-rw-e365/npm.jpg

The Hacker News

December 31, 2025

Researchers Spot Modified Shai-Hulud Worm Testing Payload on npm Registry

A new Shai-Hulud npm strain and a fake Jackson Maven package show how attackers abuse trusted dependencies to steal secrets and spread malwa...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjV9iYApTtWG0KxgphidiTj5byahP3v542tKMm1cMrVGsc4_KDJKA41BBDM0BbaiusYU-zCVytBp99VDpal0qJpvdyWinLrCLitoGYeMQ4FI1Bb-kJppiAUPSBMeMFNRre-m0NZ-ZFSjCIiPbo2DVFBa7K8qJnsRAl7eZ37tAhVmKLb7B5YLUdyLJgJDE8S/s790-rw-e365/spy.jpg

The Hacker News

December 31, 2025

U.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator Spyware

The U.S. Treasury has removed three individuals linked to Intellexa and Predator spyware from its sanctions list, without explaining the dec...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhDGmYwQ8c2eXwEoxAV4oGX21DPSHEpPLFUcOpQPAs7kXyKyG-bd41diqFVSWAm_kERqHzynIxLke6Aj4JU9LxRVyC3CB-dsq3Rm4B8KHyNUd7y_5uQvl3rgizk8dmhwQLWDVuvGCTKH6c83Etx9Bwtvr_hvPhIq35iFNgRLLFCGON5cTSwj3KlYk5C25Fh/s790-rw-e365/mail.jpg

The Hacker News

December 30, 2025

CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution

Singapore’s CSA warns of a CVSS 10.0 SmarterMail vulnerability allowing unauthenticated remote code execution via file upload; patch availab...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjTjxYF8a3raCHDKDawUyyfucLX4__gbjxE1-iVkP7DWO6wmxAz_c8HjKmGT5LIc3owZvwIoEpNMFg7ahikG0vgK1ccyTXlw6bE8bFcDrXoyPzm9yfCDMJqbEIgwowlGFggrhjvinRXfk0A4NTtPqaGYazaABx6QUESPUcm2kuazYtNq01dWgPHpiadpySF/s790-rw-e365/email.jpg

The Hacker News

December 30, 2025

Silver Fox Targets Indian Users With Tax-Themed Emails Delivering ValleyRAT Malware

Silver Fox is using India income tax phishing emails and fake software sites to install ValleyRAT, a modular Windows remote access trojan.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgeQsyuyYxxOLBhyphenhyphenPUOI-UHGn8mxloyzn4GBFnuh7p3h7XUB7Z2K2kWdI2A-k0v5GKJqRANeUQ8NZknDo1M5zTdqyYyTC3vAKThq201gtemBUHiFq1GjWc1VrfMPKS7knIFoV7mO-l20SaKKVbHs-t86wVFDEqjUz-VQkVXOiB6hD5QlzLVWdQYml3tPww/s790-rw-e365/sans.jpg

The Hacker News

December 30, 2025

How to Integrate AI into Modern SOC Workflows

The 2025 SANS SOC Survey shows AI use is rising, but many SOCs lack integration, customization, and clear validation processes.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjecDtf2H25Vece2raxEXtqLjCcgahGUR7FG5NIKWeyx6uIvaFtMlBZUrxC3Yz7RKWiVsbXyllunwBYTBEHgct6q99xvKtNR3U9SvdxMOnfbiU4UN8UgO_CLq5yowN3ZwYvw0oI5Hv7K8A14kLHv4EJaLZzowPdhSNBCE86fJF8G30qcTYYmBWCY4mMSEoh/s790-rw-e365/rootkit.jpg

The Hacker News

December 30, 2025

Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor

Mustang Panda deployed TONESHELL via a signed kernel-mode rootkit, targeting Asian government networks and evading security tools.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhrlyxi5CiR5jY-vAJtPcjpGz_L8q6_hbThbQ6ZRXd0HLNpNxG4_KNwle_7EXt_ecUGABpDmjxO2bLwLPfjUmWKfTwuP0Lh910lNr4TE6q2MAm44XQzS2k0b9RJTr1aA74Q_aNkz9frFFNZjlGuafhIChvMiOpQhzD7OfEpXZZhh_GRntRLqmRtmsdrW1NX/s790-rw-e365/recap.jpg

The Hacker News

December 29, 2025

⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More

Weekly 2025 cyber recap: MongoBleed targets 87,000, Trust Wallet $7M loss, LastPass $35M theft, DNS poisoning, npm WhatsApp trap.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhNiZRABqAp7GJHhqKTlxX3mAmNX9ySsz9docL7x7bhIaRThcg3I-nlQu1UaXaS6t8T2lQCRhw9xrLkB8neLx4H_a4cJtoOBkvRsUFg29lg6TsqSjCga61QB0xU4H72eeXjXvfRepZGXIpcLWVrcqNpu3_dCwaSbusP2AJc11PIkYmWmxrW5b_6SOlJPivt/s2600/mongodb-exploit.jpg

The Hacker News

December 29, 2025

MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide

A critical MongoDB flaw, CVE-2025-14847, is under active exploitation, allowing unauthenticated data leaks from 87,000+ vulnerable servers w...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjbarqmk-H0SfVP8X3eR-wcY-UAzQs4vgDfk6mZCaOhgsKNAmf1pLBT_CfB6bMSHARl1UMwvkmd1SL9INOF4KyHSMr7eCO4lWF6745uHql2CwA4iWIGik-6yynnmPNOjdNi9FMXD6pCx3GIJ8T8em0Y6kvg-98a8AuatSM9Ql4zgApKEPOP1pySjfOrblmd/s790-rw-e365/npm-login.jpg

The Hacker News

December 29, 2025

27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

Researchers uncovered 27 malicious npm packages used over five months to host phishing pages that steal credentials from targeted organizati...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiomGjDLekFSBoR01Dq_fed3Ka4xlF2C7QEUPeyjySDg6tHRMKyjzilC9TfZYd4xTzwrsSAKhDZ8hpMGjiEZ-APKcq9cCLPtkHHWvaJeWXTNG5D63C3dDvJVd_8Ws6z8PdrwDpHxUOfgVC4xIs6OeUk1YLO6M8Zx9gXTmJy9oDl6hoJ-oCVQ52qt5cC-BiQ/s790-rw-e365/main.jpg

The Hacker News

December 29, 2025

Traditional Security Frameworks Leave Organizations Exposed to AI-Specific Attack Vectors

AI-driven attacks leaked 23.77 million secrets in 2024, revealing that NIST, ISO, and CIS frameworks lack coverage for AI-specific threats.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiyT_32t0dBjwnGTamsqSrB1jdPxZFMFb_GMzemmxXBm3HbtqrnJNx4VqVUF8tMKdHStEwTAU-PLcOHDKsbHvF9SSVig_OGEnWFKl81BORRb5h34UUFitJuYJOF-Trvrq-nFm5m-AzFe_dQRWYJgCOTJvzVnSzXCRgEAshv0EHR35OKUxGHr3qYg-M1vQHV/s790-rw-e365/mongodb.jpg

The Hacker News

December 27, 2025

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

High-severity CVE-2025-14847 allows unauthenticated attackers to read uninitialized heap memory in MongoDB due to a zlib compression handlin...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhZP9hON3n-2zsl52VbVSUoLRU7lEedvIxRzhLddqpu6jJM7etcQZ9Mm0ojVv8614DKB7JFs8TuCtjJ5MLdfTeanXrXv5NO1WgOvjG3TuUjobHaUo6i8KNxQMD5XBTDczYKHBT-xTCb25utln7UkGwywmXvQC7joQHPv2HVJVrSug-r3S-KCOvbcifxBe1s/s790-rw-e365/apps.jpg

The Hacker News

December 26, 2025

Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code

Trust Wallet says a security incident in its Chrome extension v2.68 caused about $7M in crypto losses and urges users to update to v2.69.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhOmeV5PfAQxa3moMNy2q6r9JQI7f7qz2UhiadScjFIQ3Xuu3wqawsOshL20QzFig4PDashlUjR-giwptUDCChwuYNsUci5GMWA0ErX4HMNZ0TMIkaVYQ11zIw8MKLQqXa5tGER3kLsSFZYux0B8WM8RtWb9-oJN_ZhN7xLWKIBH16bkppORQoJwmW-q5VK/s790-rw-e365/chinese-hackers.jpg

The Hacker News

December 26, 2025

China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware

China-linked Evasive Panda used DNS poisoning to deliver the MgBot backdoor in targeted espionage attacks from 2022 to 2024.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg0BFnjQXtbmQXOq0oqe3ZVSI5MmeHtzjLyjTEEX3oJrDGGVYcdHlYnhwuJdxNKQEP-0yZ_V_3Q2Ph3tTbnrT7Bfvs1YJBqpjhinaGuLSjhcjnkd_y_egHM22tk8kJSyc8CVQtnAd3_CWjzw6HlsbiPc8ZFRuyFDv8CeA1H4xtGZZi_x6dXI3IIXA2Mx3Yu/s790-rw-e365/langchain.jpg

The Hacker News

December 26, 2025

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe serialization; up...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhLTZCBlcEQIEbZWXU3RR3B77xiWfU3KJqq8DjknH8ZNZtgGBsLgiYBO4BthMryQeog4ZEmsXaMCh6BUUCdWfibXHZ_NtEq40tdV5iiFUgpVRplI3zeRnRUm95-KlXosv-v08bOFoEL6IKWJdV0yB0OW5SFl0lE0R4D224pArrKv0Vverh8qRZrYEFALQx9/s790-rw-e365/threatsday.jpg

The Hacker News

December 25, 2025

ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories

Weekly roundup exploring how cyber threats, AI misuse, and digital deception are reshaping global security trends.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiGPo1Nkc3YmPhTvA9OPV5_RDokzlpE21PlIAMbT-8lz9peQpzT9LFWm59cX18EDEtnh2ecJD6iOzVl3-vxmNEsmXs77r32k0Xmjrqv2HlVnIIyE4VU76I6a79deBG7Fe-Bpdb3TdLNLqoN2vIsEf_iuqSpb4LXXhpCTHroURBkzXAghUD3RKEXPjE7CemD/s790-rw-e365/passwords.jpg

The Hacker News

December 25, 2025

LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds

Stolen LastPass vaults from the 2022 breach enabled about $35M in crypto thefts through 2025, according to TRM Labs.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWq72oFKp6biq3Hf_tsdl9xZeVhxI_BGzBaKfw1DiMD2ldey-KGb8qk27HJH9rt-pys9Ga94wnpRZfAYUdFW9g5_-ncNfIBaYtzsHD-GpGk0LtMaSZ0yD83PqptSkQlIuFNwa94qWlQvk3Yqz-eSpFchaeTh3VbYOXgRJ96sDTRz7dy-_ShXQu1jnzQXhx/s790-rw-e365/fortinet-exploit.jpg

The Hacker News

December 25, 2025

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication in specific LDAP...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiy1j0ppiPjhfsUfYcYQ36krQ1Jgau1SvfX5zWM4gmFxvKhVhMOxhDQIfz5nBtExAH9NBv6bv2XJAs0SJJdvXlg-bIWNibSo8kHvtDTPOxTU5B8eqPt2NlI4FtA0-0ri2T3ueDhQbyiJ_TS7IZALghzlOckTrk8zOuZhPPu3nRT4EiAvr65exPrrbmtui0x/s790-rw-e365/digiever.jpg

The Hacker News

December 25, 2025

CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution

CISA adds an actively exploited Digiever DS-2105 Pro NVR vulnerability to KEV, warning of botnet attacks and urging mitigation for unpatched...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjm_PuMhZ0HFVFeZcWU-pTmZixk1HyEXwA1hMDHRyhd3_vUKfniwEMpjAW60vTPiDnzD9yNm9zITdAQswlvy0Uc2MyvAmjJHkTuEe1n_hAvfyrUD_1KUGcGVS2jyV_gH90K8Ji1dvIe6zMvY4zdMZASLUZRSP-WyILYIah2n3peSJpumHgOx9YnSo00gTeD/s790-rw-e365/apple-macos.jpg

The Hacker News

December 24, 2025

New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper

A new MacSync macOS stealer spreads via a signed, notarized fake installer, bypassing Apple Gatekeeper before Apple revoked the certificate.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg2aPel78Nr5STfEXJNS6ffZryQXLfsfK_28p7uP87APKCUPSSltwQpz3bJ0JkicC47kinWvbbx7O1f8Ln8ihh50e8PjUVZlE0gqxnmUBR4oWUXTZCDt2wj7eU1p10UoJJXIrMrIfyYLqlDJ4SorQGFqzoDMqjtgCmSneHfAvOImN4lak7ZfDRtxKp6ihWn/s790-rw-e365/invest.jpg

The Hacker News

December 24, 2025

Nomani Investment Scam Surges 62% Using AI Deepfake Ads on Social Media

ESET reports a 62% rise in the Nomani investment scam, using AI deepfakes on social media, while detections fell 37% in late 2025.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEifLygs87unIWWh3Rkm21IaoiG7U39r9CLXQkb5f6zeuT19oC6lApHoLbM9WXzJhhhcmsH1dTsiCIi4pDO25KSU_zW7_5Erc9bhOprlF_q1ZW-np8mlXCSv5Y5KJO5Q5zuI5dJx6cVnmecgSFzTImJ9rP2YnmUQSRknzLHHDnRpYkla6_W2xRYvT4BWsPk/s790-rw-e365/proton.jpg

The Hacker News

December 24, 2025

Attacks are Evolving: 3 Ways to Protect Your Business in 2026

In 2025, small and mid-sized businesses made up 70.5% of data breaches, driven by weaker defenses and high-volume cyberattacks.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_rxN2olFlFlcGsNMy3As2bk-d-rLBC3NwCMPnRM4r5J_zZ2eRFO_XIoavtIONaORSVczKz8bzZP_4bjw_I9qPUvo-bek_ggNDECUHk4kE6Irf26TEjsmuRzWR5b6XvDwRov96e-tXvdTQfTM4Y_-sVi41EAaaOqZ_DchnLSMGWqWfcq4ULi-yznDe2ane/s790-rw-e365/farud.jpg

The Hacker News

December 24, 2025

SEC Files Charges Over $14 Million Crypto Scam Using Fake AI-Themed Investment Tips

SEC files charges over a $14M crypto scam using fake AI investment tips, WhatsApp groups, and bogus trading platforms to defraud U.S. invest...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg-yTMxyqhDKJOHubGmtYjNDzRluX2F22WXjaSmLgJwG6j0Yna4sk9hTY5HWBTix2_9Zv31mOWkqmP7OlAWR8taN8deV6TJFLG6yYU1Tex4FOx4NQv13_WY0rOWCwDCjYZRI300g0407UzkLZ4uoNX_0EsTE5BnQ-WqCv2CWnpxyNMOSDqic4rCcRtUr9I4/s790-rw-e365/apple.jpg

The Hacker News

December 24, 2025

Italy Fines Apple €98.6 Million Over ATT Rules Limiting App Store Competition

Italy’s antitrust authority fined Apple €98.6M for ATT rules that forced extra consent steps on third-party apps and harmed competition.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4__5ctB3AEUyx20JMtYNXVZZluGKRNFfjiUFh6x6DKegzNVsYHnd5W0aB_Khw7lDQRw5TzJak2NX5GyMwiCfOuvWMREsEwfnSrqgYnheHYUMamMNgJANAZWCKbkjlozi1ARLOWxjGOEAxaUo8_k5V2EweQQy8MBnxrSoNUGigeg5HOoPBWSSN5jHGfem5/s790-rw-e365/chrome-passwords.jpg

The Hacker News

December 23, 2025

Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites

Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites | Read more hacking news on The Hacker News cybersecurity new...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjFfCHIDoU0Y0gTgtyYOReNQ25Fbk3iSVfFgc4C2n8KtajPh773Ap4QVIdosJI0I61aVqcUprFNgBXGdjQJuZLyKzZKylPrm1HlSSKMTeyt3AL75pAULMPnxGTZFZHoCVf7iBjDH3C1tn-Qc7CH5b9PtKMTgI9Lq_86Js9aTmAq5521JepCW7D_-4VXZ0cG/s790-rw-e365/hackersss.jpg

The Hacker News

December 23, 2025

INTERPOL Arrests 574 in Africa; Ukrainian Ransomware Affiliate Pleads Guilty

INTERPOL’s Operation Sentinel led to 574 arrests, $3M recovered, and major ransomware and fraud disruptions across 19 African countries.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjLhfDeq_7RfPzgo2DCfamOFNy5Am9tnj1DD30TuuoStmiD8t12kh21heOGP1BvCX1ggrZe6UydxBkRH9KsK8hx-kJ09pGJ86aWrMqwQmuc1HdQEtnCwf5XtNb4Utdz6nnrLi1MgWBfxo196GOEVdA1UAG1bRHot3WHSRtgqbvnqW54gWh9_z60x-Pel-Q/s2800/passwd-main.png

The Hacker News

December 23, 2025

Passwd: A walkthrough of the Google Workspace Password Manager

Passwd is a Google Workspace–only password manager using zero-knowledge AES-256 encryption, Google SSO, audit logs, and scalable team pricin...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhxgSipnO1JBRGQ3pPkg6-wpwn7iiEERxPO37SJuXCWagEsDSQeMts_6ZrP-b08mlBs4p4Gaa1pNj-VKDdt4gPr1VObwse-z6wHsSXct3TdJXbOhSJ7ZmG8BpC1uFp64KPMrK1lUNTdmAcObxY_v67D0Zs8XsYQJ2MXik_NduT1zGdxVXI-h-bn4wMCYdM9/s790-rw-e365/fraud-domain.jpg

The Hacker News

December 23, 2025

U.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover Scheme

The US Justice Department seized a domain used to steal bank logins, causing $14.6 million in losses from 19 US victims.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgBiYnSQwGn-M1HD3JnvekqTc6yRC-xmKXBpGn1C-amAc8WPnk-PSGRPabQbJogN7oijKSF8v_3u00bGvP3BUcKToSIRc4W0V5xuXlWCR1Cv3jbqnMF4oZPr9r4j4bDNabp3j5AYeaE7EQQTVqMC-1ZIUbJvA5C6HeHcnb8coA_WISNeq5xj5MIA0bUx3Q4/s790-rw-e365/n8n.jpg

The Hacker News

December 23, 2025

Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances

Critical n8n flaw CVE-2025-68613 (CVSS 9.9) lets authenticated users run arbitrary code; versions 0.211.0–1.120.4 affected, patched in newer...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjy3bMJ_cKP4TrAH-KOWY46y-1GTQUXi_PiX9TE8l1moOLMKbIVaQ74Mv13u_tWRqHgm0YREjioC7i3BzYY_ng40nEJbStz33KNYx4L0vuzX8wSQxCQAkFwmDSBDMTJqm9c_qZ5d6zYbQifH196F0flM_gpWNUWRTtorflGdqUt55HYBjHqmOS210KZEMCs/s790-rw-e365/drone.jpg

The Hacker News

December 23, 2025

FCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security Risks

The FCC bans foreign-made drones and critical components under U.S. law, citing national security, surveillance, and airspace safety risks.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEivmlgJ1Ik_0R32UVEqmVu8yRjzKyNEMijqN7ox6JMNp9RQFOtpeBhDHEcgQH6eL6SgRRF3z6pH4YHh2fanPXGIIyrMJIUZ72Nm4JOWYycoqFnvzyFcbuufQHdjxdde1_MIZ0SiSsG8EyrzC0KpF-pO4Nvzpg2OtpApM_F0pZizo46YpYmU6Jj0dA1YvHiz/s790-rw-e365/whatsapp-api.jpg

The Hacker News

December 22, 2025

Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens

A malicious npm package posing as a WhatsApp API intercepts messages, steals credentials, and links attacker devices after 56,000 downloads.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjfN3ux07rPKZg1M2O3wpbUAk1rPOaoFe-zhltZduqAdK1WiIPa9z5XcYwZVKNnUem6cU5uvtG-MS9eIDolbN7t3T9nOQYNDufSeGDftevuCUxij9rVpsTegXGjdBP5H1ZjevvhRLlGqG5vD9sxJToi24IPMvAZWrRsMQHKE44iaKidp7cOXDln0xi7Hh65/s790-rw-e365/recap.jpg

The Hacker News

December 22, 2025

⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More

Weekly cybersecurity recap on exploited network flaws, new APT attacks, major CVEs, and defense insights.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjDqayh8eTBNeu3P7DDfaRLyYy7oXoTFadgcbgmSHwjlUYyGh8ZxACjv52OqcE-BjUZkFVjd8Fj-Vo49W4o6b2uXa4OkNR1vAB3LOCsrp5SptD9HhO_9dNvOfxH2Zp-QUBUFz94h9mKNDB_lIUvdDMu1v2Pf_ETEGWvYNqfetmTIN0Jppl_QU1M7ycBUAI/s2600/1.jpg

The Hacker News

December 22, 2025

How to Browse the Web More Sustainably With a Green Browser

Learn what eco-friendly browsing means and how a green browser like Wave Browser helps reduce digital waste while supporting more sustainabl...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgWVgGSYLL-YP_SSvlO7Ggd4xXBMYcq1VWwMSfYjL9s9_o6ewyRXjm9RP0L5EgFMKw8b5azDKhpu66hiT10OeIa54lrYOMcZtk8c8MfbNcq4NSWE4T9pkOyxN6P_yt4sGBdqI6XEFKbLboV1irfJsJO79eyzrN8JavCACeRUv7IoTujepK4K6G9-0S2ua4m/s790-rw-e365/android-malware.jpg

The Hacker News

December 22, 2025

Android Malware Operations Merge Droppers, SMS Theft, and RAT Capabilities at Scale

Android attackers use fake apps and droppers to spread the Wonderland SMS stealer, stealing OTPs, SMS data, and bank funds, mainly in Uzbeki...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiIwiMO87VFllztjgmRhdUx6jqiFtpdEStbv7MC8bdaVqT4-DNAIBWG7Kqdu7i2w2KifZIm6gUzAzVYwA83JYqsGanWJSHDKssvWCOJFKq2CdUAjxoopN5h7NOXlPkyX5JqyqyMyDTMfqQf7pSd3BSjF8Vw0i1F-rLmLjNUIQRy3QZwS69ohTvrggGTPd8/s728-rw-e365/incode-main.jpg

The Hacker News

December 22, 2025

Purdue University’s Real-World Deepfake Detection Benchmark Raises the Bar for Enterprise Models

Purdue’s PDID benchmark tests deepfake tools on real social media content, showing why false-acceptance rates matter for enterprise security...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhHegtv-omZYW79shLsEk_Vh8OqZ0lziJ2eEH1ADUh6S26O4zAQVpJ0RPi4Y8sOn1QCZNMVMwJoz8_9KxEGiDsef2EUlIPqPEakq3DA5gNpJGlqRHspRCVBRtZM-9ur6CtAPdwtj57Acs2U3HXg2IV6RWyK51gp-L6VZywbKe3GHWqSyeXzi8UZSkFkmtd6/s790-rw-e365/desk.jpg

The Hacker News

December 21, 2025

Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence

Iranian APT Infy resurfaced after years of silence, using updated Foudre & Tonnerre malware, phishing delivery, resilient C2 infrastructure...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgK2cP9lHpEiLS7JATicmiwWuw1qs3WctK2ZALMrG43Z51JnhNcBG2QyRtbyIAsN032vYBZh7-GFDQ-d5R92xrf3hTBuU2cuSUpB0bPD8lnytywyG1harMel1KgOneMliCPammT3TNDZL7mvqpqkdQiFddGGX65iGzM0SLcaPNBQyeSKgK-7P6Bf5XAFIzb/s790-rw-e365/atm.jpg

The Hacker News

December 20, 2025

U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware

The DOJ charged 54 people over Ploutus malware attacks on ATMs, linked to Tren de Aragua, causing $40.73 million in U.S. losses since 2021.

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg6rG0It4YgDaraGdYMUeGqu11YGd_aORJs3sbrIhK3Xe1FaMag0ELM5dA_B5eSsPxFKWOd0HKBV1GzjQBUlS6sEundoKDqXUawbWkJgEg8GHlpSxDa2XE96vxccNI6Zi3OqxCKZL33azUFgZXsL3mHyORT0fd-BS0hnpsg9xNvJCCrvb9gUHEVKnzmiKej/s790-rw-e365/ms.jpg

The Hacker News

December 19, 2025

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

A Russia-aligned threat group uses Microsoft 365 device code phishing to steal credentials and take over accounts, tracked since September 2...

https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEicPzq0o0uHOZdPJOFPje25gUDCZ9NIF3JziC7YLTl2aCUqRKNDQ0M3iOVI4b4B4oUE7ulYTWEPDS2NbNeH-NEgS8vOaADyMBYNzsns2uKE1KgsWrSCPtRieBLvsii6hGKfqSD_3K_LFso4qz1uddlWLhKD5LQjuHX2VOR_F4wjhHFKM35Rxqe_4uq282Zg/s790-rw-e365/youtube-malware.jpg

The Hacker News

December 19, 2025

Cracked Software and YouTube Videos Spread CountLoader and GachiLoader Malware

Researchers uncover malware campaigns using cracked software and compromised YouTube videos to deliver CountLoader, GachiLoader, and info st...