CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV Vulnerability / Container SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA)... 2026-5-3 06:26:0 | 阅读: 30 | 收藏 | The Hacker News - thehackernews.com security memory attacker python

Trellix Confirms Source Code Breach With Unauthorized Repository Access Data Breach / Enterprise SecurityCybersecurity company Trellix has announced that it suffered a br... 2026-5-2 06:41:0 | 阅读: 26 | 收藏 | The Hacker News - thehackernews.com trellix attackers exploited owned fireeye

30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign Malware / Threat IntelligenceA newly discovered Vietnamese-linked operation has been observed usin... 2026-5-1 18:9:0 | 阅读: 23 | 收藏 | The Hacker News - thehackernews.com facebook phishing appsheet vietnamese clusters

Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks Cybersecurity researchers are warning of two cybercrime groups that are carrying out "rapid, high-i... 2026-5-1 14:26:0 | 阅读: 21 | 收藏 | The Hacker News - thehackernews.com cri 1116 bypass spider phishing

China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists Cybersecurity researchers have disclosed details of a new China-aligned espionage campaign targetin... 2026-5-1 14:2:0 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com carp phishing glitter sequin earth

Top Five Sales Challenges Costing MSPs Cybersecurity Revenue The managed security services market is projected to grow from $38.31 billion in 2025 to $69.16 bil... 2026-5-1 10:30:0 | 阅读: 23 | 收藏 | The Hacker News - thehackernews.com security msps client strategic

Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks Data Breach / Law EnforcementThe U.S. Department of Justice (DoJ) on Thursday announced the senten... 2026-5-1 09:56:0 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com ransomware blackcat martino defendants

Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft Supply Chain Attack / MalwareA new software supply chain attack campaign has been observed using s... 2026-5-1 09:43:0 | 阅读: 24 | 收藏 | The Hacker News - thehackernews.com github knot ssh sleeper

PyTorch Lightning Compromised in PyPI Supply Chain Attack to Steal Credentials Supply Chain Attack / MalwareIn yet another software supply chain attack, threat actors have manag... 2026-4-30 16:31:0 | 阅读: 24 | 收藏 | The Hacker News - thehackernews.com github payload malicious lightning developer

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories The internet is noisy this week. We are seeing some wild new tactics, like people using fake cell to... 2026-4-30 13:55:0 | 阅读: 40 | 收藏 | The Hacker News - thehackernews.com phishing 2026 network github malicious

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials Cloud Security / Threat IntelligenceCybersecurity researchers have disclosed details of a stealthy... 2026-4-30 12:36:0 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com windows python door cloud payload

EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades IntroA sophisticated, high-resilience malicious campaign was identified by Atos Threat Research Ce... 2026-4-30 11:30:0 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com c2 stage github malicious blockchain

New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions Cybersecurity researchers have disclosed details of a Linux local privilege escalation (LPE) flaw t... 2026-4-30 09:24:0 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com aead xint alg

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution AI Security / VulnerabilityGoogle has addressed a maximum severity security flaw in Gemini CLI --... 2026-4-30 07:7:0 | 阅读: 32 | 收藏 | The Hacker News - thehackernews.com gemini repository security malicious github

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack Supply Chain Attack / MalwareCybersecurity researchers are sounding the alarm about a new supply c... 2026-4-29 16:26:0 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com github oidc repository claude payload

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs Cybersecurity researchers have discovered malicious code in an npm package after a malicious packag... 2026-4-29 14:43:0 | 阅读: 26 | 收藏 | The Hacker News - thehackernews.com malicious github contagious stealer

Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks Artificial Intelligence / Exposure ValidationIn February 2026, researchers uncovered a shift that... 2026-4-29 12:2:0 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com security autonomous silos defensive exposure

What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong) Every security team has a version of the same story. The quarter ends with hundreds of vulnerabilit... 2026-4-29 11:30:0 | 阅读: 19 | 收藏 | The Hacker News - thehackernews.com exposure exposures cloud security

Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately Vulnerability / Web HostingcPanel has released security updates to address a security issue impacti... 2026-4-29 09:37:0 | 阅读: 21 | 收藏 | The Hacker News - thehackernews.com cpanel namecheap security impacting

CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV Vulnerability / Network SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) o... 2026-4-29 08:46:0 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com 2026 microsoft catalog kev security