Category: Hacker News

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

September 9, 2025
[Webinar] Shadow AI Agents Multiply Fast — Learn How to Detect and Control Them

[Webinar] Shadow AI Agents Multiply Fast — Learn How to Detect and Control Them

September 9, 2025
How Leading CISOs are Getting Budget Approval

How Leading CISOs are Getting Budget Approval

September 9, 2025
20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain Attack

20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain Attack

September 9, 2025
45 Previously Unreported Domains Expose Longstanding Salt Typhoon Cyber Espionage

45 Previously Unreported Domains Expose Longstanding Salt Typhoon Cyber Espionage

September 9, 2025
GitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 Companies

GitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 Companies

September 8, 2025
GPUGate Malware Uses Google Ads and Fake GitHub Commits to Target IT Firms

GPUGate Malware Uses Google Ads and Fake GitHub Commits to Target IT Firms

September 8, 2025
⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & More

⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & More

September 8, 2025
You Didn’t Get Phished — You Onboarded the Attacker

You Didn’t Get Phished — You Onboarded the Attacker

September 8, 2025
Noisy Bear Targets Kazakhstan Energy Sector With BarrelFire Phishing Campaign

Noisy Bear Targets Kazakhstan Energy Sector With BarrelFire Phishing Campaign

September 6, 2025
Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

September 6, 2025
CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under Active Exploitation

CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under Active Exploitation

September 5, 2025
TAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware Operations

TAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware Operations

September 5, 2025
SAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild

SAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild

September 5, 2025
Automation Is Redefining Pentest Delivery

Automation Is Redefining Pentest Delivery

September 5, 2025
VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

September 5, 2025
Russian APT28 Deploys “NotDoor” Outlook Backdoor Against Companies in NATO Countries

Russian APT28 Deploys “NotDoor” Outlook Backdoor Against Companies in NATO Countries

September 4, 2025
GhostRedirector Hacks 65 Windows Servers Using Rungan Backdoor and Gamshen IIS Module

GhostRedirector Hacks 65 Windows Servers Using Rungan Backdoor and Gamshen IIS Module

September 4, 2025
Simple Steps for Attack Surface Reduction

Simple Steps for Attack Surface Reduction

September 4, 2025
Google Fined $379 Million by French Regulator for Cookie Consent Violations

Google Fined $379 Million by French Regulator for Cookie Consent Violations

September 4, 2025
CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited

CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited

September 4, 2025
Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware to Millions

Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware to Millions

September 4, 2025
Threat Actors Weaponize HexStrike AI to Exploit Citrix Flaws Within a Week of Disclosure

Threat Actors Weaponize HexStrike AI to Exploit Citrix Flaws Within a Week of Disclosure

September 4, 2025
Detecting Data Leaks Before Disaster

Detecting Data Leaks Before Disaster

September 4, 2025
Android Security Alert: Google Patches 120 Flaws, Including Two Zero-Days Under Attack

Android Security Alert: Google Patches 120 Flaws, Including Two Zero-Days Under Attack

September 4, 2025
Iranian Hackers Exploit 100+ Embassy Email Accounts in Global Phishing Targeting Diplomats

Iranian Hackers Exploit 100+ Embassy Email Accounts in Global Phishing Targeting Diplomats

September 4, 2025
Malicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto Developers

Malicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto Developers

September 4, 2025