News

The Hacker News1d
U.S. Sanctions Firm Behind N. Korean IT Scheme; Arizona Woman Jailed for Running Laptop Farm
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned a North Korean front company and ...
The Hacker News2d
Overcoming Risks from Chinese GenAI Tool Usage
China-based GenAI tools used by 1,059 employees exposed sensitive enterprise data, raising global compliance concerns.
The Hacker News1d
Patchwork Targets Turkish Defense Firms with Spear-Phishing Using Malicious LNK Files
Patchwork targets Turkish defense firms with LNK phishing to steal UAV, missile data amid geopolitical tension.
The Hacker News1d
Cyber Espionage Campaign Hits Russian Aerospace Sector Using EAGLET Backdoor
Russian defense firms hit by cyberattacks using EAGLET malware via phishing lures; threat actors linked to Head Mare and ...
The Hacker News2d
CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing
CastleLoader malware infected 469 devices via ClickFix, GitHub, and phishing since May 2025. Malware delivery is evolving ...
The Hacker News2d
Critical Mitel Flaw Lets Hackers Bypass Login, Gain Full Access to MiVoice MX-ONE Systems
Mitel fixes critical MiVoice and MiCollab flaws that allow account access and SQL attacks. Users must update to avoid system ...
The Hacker News2d
Sophos and SonicWall Patch Critical RCE Flaws Affecting Firewalls and SMA 100 Devices
Sophos and SonicWall have alerted users of critical security flaws in Sophos Firewall and Secure Mobile Access (SMA) 100 ...
The Hacker News2d
Fire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter Environments
Fire Ant's breach of the virtualization management layer is achieved by the exploitation of CVE-2023-34048, a known security ...
The Hacker News4d
Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages
Google has announced the launch of a new initiative called OSS Rebuild to bolster the security of the open-source package ...
The Hacker News2d
Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks
Two malware campaigns, Soco404 and Koske, target cloud services with cryptominers via images and misconfigurations.
The Hacker News3d
Storm-2603 Exploits SharePoint Flaws to Deploy Warlock Ransomware on Unpatched Systems
Storm-2603 exploits SharePoint flaws to deploy Warlock ransomware, affecting 400+ victims. Microsoft urges mitigation.
The Hacker News4d
Cisco Confirms Active Exploits Targeting ISE Flaws Enabling Unauthenticated Root Access
Cisco confirms active exploitation of critical ISE bugs, exposing systems to remote root access. Urgent patching advised.