News

The Hacker News13h
Chinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks
A Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched ...
The Hacker News17h
Identity Security Has an Automation Problem—And It's Bigger Than You Think
52% of breaches stem from manual identity workflows in disconnected apps—causing customer loss and compliance risks.
The Hacker News16h
FBI and Europol Disrupt Lumma Stealer Malware Network Linked to 10 Million Infections
Microsoft and Europol dismantled Lumma’s 2,300-domain C2 network after 10M infections tied to credential and crypto theft.
The Hacker News16h
Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks
UNC5221 exploited Ivanti EPMM flaws CVE-2025-4427/4428 in global attacks starting May 15, 2025, enabling remote access and ...
The Hacker News21h
Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics
APT28 targets NATO-aligned logistics and tech firms via malware, phishing, and 7 CVEs to spy on Ukraine aid routes.
The Hacker News17h
Unpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise Host
Three critical Versa Concerto flaws disclosed after 90 days allow remote code execution via reverse proxy misconfigurations.
The Hacker News1d
Fake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims
Fake Facebook ads impersonating Kling AI deploy PureHVNC RAT via spoofed sites, stealing credentials and crypto data.
The Hacker News1d
PureRAT Malware Spikes 4x in 2025, Deploying PureLogs to Target Russian Firms
The original executable that launches "ckcfb.exe" simultaneously also extracts a second binary referred to as "StilKrip.exe," ...
The Hacker News2d
South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware
The attack chains leverage spear-phishing lures as a starting point to activate the infection process and deploy a known ...
The Hacker News2d
Go-Based Malware Deploys XMRig Miner on Linux Hosts via Redis Configuration Abuse
A new cryptojacking campaign dubbed RedisRaider is hijacking publicly exposed Redis servers by injecting cron jobs using ...
The Hacker News1d
Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization
Threat hunters have exposed the tactics of a China-aligned threat actor called UnsolicitedBooker that targeted an unnamed ...
The Hacker News1d
AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation
Cybersecurity researchers have discovered risky default identity and access management (IAM) roles impacting Amazon Web ...