The Hacker News News Headlines

14-11-25 (14:04)   Ransomware's Fragmentation Reaches a Breaking Point While LockBit Returns
14-11-25 (14:04)   Chinese Hackers Use Anthropic's AI to Launch Automated Cyber Espionage Campaign
14-11-25 (14:04)   Now-Patched Fortinet FortiWeb Flaw Exploited in Attacks to Create Admin Accounts
14-11-25 (14:04)   Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests' Payment Data
14-11-25 (14:04)   Fake Chrome Extension "Safery" Steals Ethereum Wallet Seed Phrases Using Sui Blockchain
14-11-25 (14:04)   When Attacks Come Faster Than Patches: Why 2026 Will be the Year of Machine-Speed Security
14-11-25 (14:04)   Operation Endgame Dismantles Rhadamanthys, Venom RAT, and Elysium Botnet in Global Crackdown
14-11-25 (14:04)   ThreatsDay Bulletin: Cisco 0-Days, AI Bug Bounties, Crypto Heists, State-Linked Leaks and 20 More Stories
14-11-25 (14:04)   CISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login Attacks
14-11-25 (14:04)   Over 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack
14-11-25 (14:04)   Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform
14-11-25 (14:04)   Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws
14-11-25 (14:04)   [Webinar] Learn How Leading Security Teams Reduce Attack Surface Exposure with DASR
14-11-25 (14:04)   Active Directory Under Siege: Why Critical Infrastructure Needs Stronger Security
14-11-25 (14:04)   Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
14-11-25 (14:04)   Google Launches 'Private AI Compute' — Secure AI Processing with On-Device-Level Privacy
14-11-25 (14:04)   WhatsApp Malware 'Maverick' Hijacks Browser Sessions to Target Brazil's Biggest Banks
14-11-25 (14:04)   GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites
14-11-25 (14:04)   CISO's Expert Guide To AI Supply Chain Attacks
14-11-25 (14:04)   Npm Package Targeting GitHub-Owned Repositories Flagged as Red Team Exercise
14-11-25 (14:04)   Android Trojan 'Fantasy Hub' Malware Service Turns Telegram Into a Hub for Hackers
14-11-25 (14:04)   Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature
14-11-25 (14:04)   Konni Hackers Turn Google's Find Hub into a Remote Data-Wiping Weapon
14-11-25 (14:04)   ⚡ Weekly Recap: Hyper-V Malware, Malicious AI Bots, RDP Exploits, WhatsApp Lockdown and More
14-11-25 (14:04)   New Browser Security Report Reveals Emerging Threats for Enterprises
14-11-25 (14:04)   Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware
14-11-25 (14:04)   GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs
14-11-25 (14:04)   Microsoft Uncovers 'Whisper Leak' Attack That Identifies AI Chat Topics in Encrypted Traffic
14-11-25 (14:04)   Samsung Mobile Flaw Exploited as Zero-Day to Deploy LANDFALL Android Spyware
14-11-25 (14:04)   From Log4j to IIS, China's Hackers Turn Legacy Bugs into Global Espionage Tools
14-11-25 (14:04)   Hidden Logic Bombs in Malware-Laced NuGet Packages Set to Detonate Years After Installation
14-11-25 (14:04)   Enterprise Credentials at Risk - Same Old, Same Old?
14-11-25 (14:04)   Google Launches New Maps Feature to Help Businesses Report Review-Based Extortion Attempts
14-11-25 (14:04)   Vibe-Coded Malicious VS Code Extension Found with Built-In Ransomware Capabilities
14-11-25 (14:04)   Trojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on Ukraine
14-11-25 (14:04)   Cisco Warns of New Firewall Attack Exploiting CVE-2025-20333 and CVE-2025-20362
14-11-25 (14:04)   From Tabletop to Turnkey: Building Cyber Resilience in Financial Services
14-11-25 (14:04)   ThreatsDay Bulletin: AI Tools in Malware, Botnets, GDI Flaws, Election Attacks & More
14-11-25 (14:04)   Bitdefender Named a Representative Vendor in the 2025 Gartner® Market Guide for Managed Detection and Response
14-11-25 (14:04)   Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection
14-11-25 (14:04)   SonicWall Confirms State-Sponsored Hackers Behind September Cloud Backup Breach
14-11-25 (14:04)   Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly
14-11-25 (14:04)   Researchers Find ChatGPT Vulnerabilities That Let Attackers Trick AI Into Leaking Data
14-11-25 (14:04)   Securing the Open Android Ecosystem with Samsung Knox
14-11-25 (14:04)   Mysterious 'SmudgedSerpent' Hackers Target U.S. Policy Experts Amid Iran-Israel Tensions
14-11-25 (14:04)   U.S. Sanctions 10 North Korean Entities for Laundering $12.7M in Crypto and IT Fraud
14-11-25 (14:04)   Why SOC Burnout Can Be Avoided: Practical Steps
14-11-25 (14:04)   CISA Adds Gladinet and CWP Flaws to KEV Catalog Amid Active Exploitation Evidence
14-11-25 (14:04)   A Cybercrime Merger Like No Other — Scattered Spider, LAPSUS$, and ShinyHunters Join Forces
14-11-25 (14:04)   European Authorities Dismantle €600 Million Crypto Fraud Network in Global Sweep
19-01-24 (14:57)   Experts Warn of macOS Backdoor Hidden in Pirated Versions of Popular Software
19-01-24 (12:43)   Preventing Data Loss: Backup and Recovery Strategies for Exchange Server Administrators
19-01-24 (09:43)   Npm Trojan Bypasses UAC, Installs AnyDesk with "Oscompatible" Package
19-01-24 (06:12)   U.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM Vulnerability
18-01-24 (18:12)   New Docker Malware Steals CPU for Crypto & Drives Fake Website Traffic
18-01-24 (16:57)   Russian COLDRIVER Hackers Expand Beyond Phishing with Custom Malware
18-01-24 (14:12)   TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks
18-01-24 (14:12)   MFA Spamming and Fatigue: When Security Measures Go Wrong
18-01-24 (11:12)   PixieFail UEFI Flaws Expose Millions of Computers to RCE, DoS, and Data Theft
18-01-24 (09:12)   This Free Discovery Tool Finds and Mitigates AI-SaaS Risks
18-01-24 (05:57)   Iranian Hackers Masquerade as Journalists to Spy on Israel-Hamas War Experts
17-01-24 (15:57)   PAX PoS Terminal Flaw Could Allow Attackers to Tamper with Transactions
17-01-24 (12:43)   Feds Warn of AndroxGh0st Botnet Targeting AWS, Azure, and Office 365 Credentials
17-01-24 (12:43)   Webinar: The Art of Privilege Escalation - How Hackers Become Admins
17-01-24 (11:57)   New iShutdown Method Exposes Hidden Spyware Like Pegasus on Your iPhone
17-01-24 (09:26)   GitHub Rotates Keys After High-Severity Vulnerability Exposes Credentials
17-01-24 (05:57)   Citrix, VMware, and Atlassian Hit with Critical Flaws - Patch ASAP!
17-01-24 (03:57)   Zero-Day Alert: Update Chrome Now to Fix New Actively Exploited Vulnerability
16-01-24 (15:43)   Alert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits - Act Now
16-01-24 (14:43)   Remcos RAT Spreading Through Adult Games in New Attack Wave
16-01-24 (12:57)   Case Study: The Cookie Privacy Monster in Big Global Retail
16-01-24 (09:43)   Inferno Malware Masqueraded as Coinbase, Drained $87 Million from 137,000 Victims
16-01-24 (08:43)   Hackers Weaponize Windows Flaw to Deploy Crypto-Siphoning Phemedrone Stealer
15-01-24 (15:12)   Opera MyFlaw Bug Could Let Hackers Run ANY File on Your Mac or Windows
15-01-24 (15:12)   3 Ransomware Group Newcomers to Watch in 2024
15-01-24 (09:57)   High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners
15-01-24 (09:57)   Balada Injector Infects Over 7,100 WordPress Sites Using Plugin Vulnerability
15-01-24 (07:43)   DDoS Attacks on the Environmental Services Industry Surge by 61,839% in 2023
14-01-24 (10:57)   New Findings Challenge Attribution in Denmark's Energy Sector Cyberattacks
13-01-24 (12:57)   Critical RCE Vulnerability Uncovered in Juniper SRX Firewalls and EX Switches
13-01-24 (11:26)   29-Year-Old Ukrainian Cryptojacking Kingpin Arrested for Exploiting Cloud Services
12-01-24 (15:12)   Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families
12-01-24 (15:12)   Medusa Ransomware on the Rise: From Data Leaks to Multi-Extortion
12-01-24 (15:12)   Urgent: GitLab Releases Patch for Critical Vulnerabilities - Update ASAP
12-01-24 (13:43)   Applying the Tyson Principle to Cybersecurity: Why Attack Simulation is Key to Avoiding a KO
12-01-24 (09:12)   Cryptominers Targeting Misconfigured Apache Hadoop and Flink with Rootkit in New Attacks
12-01-24 (08:12)   Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
11-01-24 (16:43)   Threat Actors Increasingly Abusing GitHub for Malicious Purposes
11-01-24 (16:12)   New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems
11-01-24 (16:12)   New Python-based FBot Hacking Toolkit Aims at Cloud and SaaS Platforms
11-01-24 (13:12)   There is a Ransomware Armageddon Coming for Us All
11-01-24 (13:12)   Atomic Stealer Gets an Upgrade - Targeting Mac Users with Encrypted Payload
11-01-24 (07:43)   Mandiant's X Account Was Hacked Using Brute-Force Attack
11-01-24 (06:43)   Chinese Hackers Exploit Zero-Day Flaws in Ivanti Connect Secure and Policy Secure
11-01-24 (06:43)   Cisco Fixes High-Risk Vulnerability Impacting Unity Connection Software
11-01-24 (06:43)   CISA Flags 6 Vulnerabilities - Apple, Apache, Adobe, D-Link, Joomla Under Attack
10-01-24 (17:43)   NoaBot: Latest Mirai-Based Botnet Targeting SSH Servers for Crypto Mining
10-01-24 (13:12)   Getting off the Attack Surface Hamster Wheel: Identity Can Help
10-01-24 (12:43)   Free Decryptor Released for Black Basta and Babuk's Tortilla Ransomware Victims
10-01-24 (10:43)   FTC Bans Outlogic (X-Mode) From Selling Sensitive Location Data