Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan Malware / Social EngineeringThe threat actor known as Bloody Wolf has been attributed to a cyber a... 2025-11-27 18:13:0 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com netsupport wolf uzbekistan bloody kyrgyzstan

Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update Web Security / Zero TrustMicrosoft has announced plans to improve the security of Entra ID authent... 2025-11-27 15:37:0 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com microsoft security entra inject

ThreatsDay Bulletin: AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories Hackers have been busy again this week. From fake voice calls and AI-powered malware to huge money-l... 2025-11-27 10:3:0 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com phishing security malicious microsoft

Gainsight Expands Impacted Customer List Following Salesforce Security Alert Ransomware / Cloud SecurityGainsight has disclosed that the recent suspicious activity targeting... 2025-11-27 07:3:0 | 阅读: 36 | 收藏 | The Hacker News - thehackernews.com gainsight salesforce shinysp1d3r ransomware slsh

Shai-Hulud v2 Campaign Spreads From npm to Maven, Exposing Thousands of Secrets The second wave of the Shai-Hulud supply chain attack has spilled over to the Maven ecosystem after... 2025-11-26 18:8:0 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com github hulud posthog software malicious

Qilin Ransomware Turns South Korean MSP Breach Into 28-Victim 'Korean Leaks' Data Heist South Korea's financial sector has been targeted by what has been described as a sophisticated s... 2025-11-26 14:31:0 | 阅读: 8 | 收藏 | The Hacker News - thehackernews.com ransomware qilin korean bitdefender wave

When Your $2M Security Detection Fails: Can your SOC Save You? Enterprises today are expected to have at least 6-8 detection tools, as detection is considered a s... 2025-11-26 11:55:0 | 阅读: 6 | 收藏 | The Hacker News - thehackernews.com security investment investments radiant threats

Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools Software Security / Patch ManagementIf you're using community tools like Chocolatey or Winget to k... 2025-11-26 11:10:0 | 阅读: 5 | 收藏 | The Hacker News - thehackernews.com slowing spot safely webinar mix

Chrome Extension Caught Injecting Hidden Solana Transfer Fees Into Raydium Swaps Browser Security / CryptocurrencyCybersecurity researchers have discovered a new malicious extensi... 2025-11-26 11:10:0 | 阅读: 5 | 收藏 | The Hacker News - thehackernews.com sol fee solana 0013 malicious

RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware Malware / Cyber EspionageThe threat actors behind a malware family known as RomCom targeted a U.S.... 2025-11-26 08:28:0 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com romcom loader socgholish ukraine arctic

FBI Reports $262M in ATO Fraud as Researchers Cite Growing AI Phishing and Holiday Scams The U.S. Federal Bureau of Investigation (FBI) has warned that cybercriminals are impersonating fin... 2025-11-26 04:29:0 | 阅读: 8 | 收藏 | The Hacker News - thehackernews.com phishing fraudulent ato attackers

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys Data Exposure / Cloud SecurityNew research has found that organizations in various sensitive secto... 2025-11-25 16:49:0 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com sectors security

JackFix Uses Fake Windows Update Pop-Ups on Adult Sites to Deliver Multiple Stealers Cybersecurity researchers are calling attention to a new campaign that's leveraging a combination o... 2025-11-25 14:18:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com powershell windows clickfix security mshta

ToddyCat’s New Hacking Tools Steal Outlook Emails and Microsoft 365 Access Tokens The threat actor known as ToddyCat has been observed adopting new methods to obtain access to corpo... 2025-11-25 11:36:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com tomberbil microsoft ost toddycat

3 SOC Challenges You Need to Solve Before 2026 2026 will mark a pivotal shift in cybersecurity. Threat actors are moving from experimenting with... 2025-11-25 11:30:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com threats security analysis 2026 malicious

Hackers Hijack Blender 3D Assets to Deploy StealC V2 Data-Stealing Malware Malware / Browser SecurityCybersecurity researchers have disclosed details of a new campaign that... 2025-11-25 11:28:0 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com python blender blend stealc security

CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users Spyware / Mobile SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monda... 2025-11-25 06:42:0 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com spyware security phishing e2ee victim

New Fluent Bit Flaws Expose Cloud to RCE and Stealthy Infrastructure Intrusions Vulnerability / Container SecurityCybersecurity researchers have discovered five vulnerabilities i... 2025-11-24 15:3:0 | 阅读: 7 | 收藏 | The Hacker News - thehackernews.com fluent cloud attackers security

Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft Cloud Security / VulnerabilityMultiple security vendors are sounding the alarm about a second wave... 2025-11-24 13:3:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com github hulud malicious security wave

⚡ Weekly Recap: Fortinet Exploit, Chrome 0-Day, BadIIS Malware, Record DDoS, SaaS Breach & More Cybersecurity / Hacking NewsThis week saw a lot of new cyber trouble. Hackers hit Fortinet and C... 2025-11-24 12:32:0 | 阅读: 23 | 收藏 | The Hacker News - thehackernews.com security windows network malicious microsoft