News

The Hacker News2h

U.S. Sanctions Firm Behind N. Korean IT Scheme; Arizona Woman Jailed for Running Laptop Farm

The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned a North Korean front company and ...
The Hacker News4h

Cyber Espionage Campaign Hits Russian Aerospace Sector Using EAGLET Backdoor

Russian defense firms hit by cyberattacks using EAGLET malware via phishing lures; threat actors linked to Head Mare and ...
The Hacker News3h

Patchwork Targets Turkish Defense Firms with Spear-Phishing Using Malicious LNK Files

Patchwork targets Turkish defense firms with LNK phishing to steal UAV, missile data amid geopolitical tension.
The Hacker News7h

Overcoming Risks from Chinese GenAI Tool Usage

China-based GenAI tools used by 1,059 employees exposed sensitive enterprise data, raising global compliance concerns.
The Hacker News7h

Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks

Two malware campaigns, Soco404 and Koske, target cloud services with cryptominers via images and misconfigurations.
The Hacker News1d

Critical Mitel Flaw Lets Hackers Bypass Login, Gain Full Access to MiVoice MX-ONE Systems

Mitel fixes critical MiVoice and MiCollab flaws that allow account access and SQL attacks. Users must update to avoid system ...
The Hacker News1d

CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing

CastleLoader malware infected 469 devices via ClickFix, GitHub, and phishing since May 2025. Malware delivery is evolving ...
The Hacker News1d

Sophos and SonicWall Patch Critical RCE Flaws Affecting Firewalls and SMA 100 Devices

Sophos and SonicWall have alerted users of critical security flaws in Sophos Firewall and Secure Mobile Access (SMA) 100 ...
The Hacker News1d

Watch This Webinar to Uncover Hidden Flaws in Login, AI, and Digital Trust — and Fix Them

If something feels off, trust can vanish in an instant. Add to that the lightning-fast changes AI is bringing to everything ...
The Hacker News1d

Fire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter Environments

Fire Ant's breach of the virtualization management layer is achieved by the exploitation of CVE-2023-34048, a known security ...
The Hacker News1d

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

Malware hidden in WordPress mu-plugins grants attackers full access and admin control, putting websites and users at serious ...
The Hacker News2d

New Coyote Malware Variant Exploits Windows UI Automation to Steal Banking Credentials

Coyote malware uses Windows UI Automation to target 75 banks and crypto sites in Brazil, risking credential theft.