News

The Hacker News10h
North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign
North Korean cyber group targets Web3 businesses with Nim-based malware, exploiting AppleScript and Telegram for persistent ...
The Hacker News10h
Hackers Using PDFs to Impersonate Microsoft, DocuSign, and More in Callback Phishing Campaigns
Phishing campaigns use PDF attachments and callback phishing to exploit brands like Microsoft and DocuSign, affecting ...
The Hacker News17h
U.S. Sanctions Russian Bulletproof Hosting Provider for Supporting Cybercriminals Behind Ransomware
U.S. sanctions Russian BPH provider Aeza Group for hosting ransomware attacks, dark web drugs, and cybercrime.
The Hacker News16h
That Network Traffic Looks Legit, But it Could be Hiding a Serious Threat
SOCs face evolving cyber threats as 80% of attacks mimic user behavior. Discover how multi-layered NDR detection strategies ...
The Hacker News21h
Vercel's v0 AI Tool Weaponized by Cybercriminals to Rapidly Create Fake Login Pages at Scale
Unknown threat actors have been observed weaponizing v0, a generative artificial intelligence (AI) tool from Vercel, to ...
The Hacker News22h
TA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware Campaigns
Proofpoint tracks overlapping tactics of TA829 and UNK_GreenSec, deploying TransferLoader and RomCom RAT globally.
The Hacker News1d
U.S. Arrests Facilitator in North Korean IT Worker Scheme; Seizes 29 Domains and Raids 21 Laptop Farms
The U.S. Department of Justice (DoJ) on Monday announced sweeping actions targeting the North Korean information technology ...
The Hacker News1d
Chrome Zero-Day CVE-2025-6554 Under Active Attack — Google Issues Security Update
CVE-2025-6554 is the fourth zero-day vulnerability in Chrome to be addressed by Google since the start of the year after ...
The Hacker News1d
New Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified Status
A security flaw in IDEs like Visual Studio Code lets attackers bypass extension verification, running malicious code on ...
The Hacker News22h
U.S. Agencies Warn of Rising Iranian Cyber Attacks on Defense, OT Networks, and Critical Infrastructure
U.S. issues warning on potential Iranian cyber-attacks, urging stronger protections for critical infrastructure and defense sectors.
The Hacker News1d
Critical Vulnerability in Anthropic's MCP Exposes Developer Machines to Remote Exploits
Cybersecurity researchers have discovered a critical security vulnerability in artificial intelligence (AI) company Anthropic ...
The Hacker News1d
Microsoft Removes Password Management from Authenticator App Starting August 2025
Microsoft will end password support in Authenticator by August 2025, shifting to Microsoft account syncing via Edge.