The Hacker News News Headlines

05-01-26 (19:26)   Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and Government
05-01-26 (18:43)   Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks
05-01-26 (15:12)   ⚡ Weekly Recap: IoT Exploits, Wallet Breaches, Rogue Extensions, AI Abuse & More
05-01-26 (13:43)   The State of Cybersecurity in 2025: Key Segments, Insights, and Innovations 
05-01-26 (10:57)   Bitfinex Hack Convict Ilya Lichtenstein Released Early Under U.S. First Step Act
05-01-26 (09:43)   New VVS Stealer Malware Targets Discord Accounts via Obfuscated Python Code
02-01-26 (15:12)   Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia
02-01-26 (13:12)   The ROI Problem in Attack Surface Management
02-01-26 (11:26)   Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign
01-01-26 (17:43)   ThreatsDay Bulletin: GhostAd Drain, macOS Attacks, Proxy Botnets, Cloud Exploits, and 12+ Stories
01-01-26 (16:43)   How To Browse Faster and Get More Done Using Adapt Browser
01-01-26 (11:12)   RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers
01-01-26 (06:43)   Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System
31-12-25 (18:26)   Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack
31-12-25 (17:26)   DarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users Worldwide
31-12-25 (14:57)   Researchers Spot Modified Shai-Hulud Worm Testing Payload on npm Registry
31-12-25 (07:43)   U.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator Spyware
30-12-25 (18:26)   CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution
30-12-25 (12:12)   Silver Fox Targets Indian Users With Tax-Themed Emails Delivering ValleyRAT Malware
30-12-25 (11:43)   How to Integrate AI into Modern SOC Workflows
30-12-25 (09:57)   Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor
29-12-25 (15:43)   ⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More
29-12-25 (10:57)   27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials
29-12-25 (08:57)   MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide
29-12-25 (08:57)   Traditional Security Frameworks Leave Organizations Exposed to AI-Specific Attack Vectors
27-12-25 (09:26)   New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory
26-12-25 (17:12)   Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code
26-12-25 (16:26)   China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware
26-12-25 (11:12)   Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection
25-12-25 (15:57)   ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories
25-12-25 (14:12)   LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds
25-12-25 (09:43)   Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability
25-12-25 (09:43)   CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution
24-12-25 (18:26)   New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper
24-12-25 (14:57)   Nomani Investment Scam Surges 62% Using AI Deepfake Ads on Social Media
24-12-25 (12:57)   Attacks are Evolving: 3 Ways to Protect Your Business in 2026
24-12-25 (10:57)   SEC Files Charges Over $14 Million Crypto Scam Using Fake AI-Themed Investment Tips
24-12-25 (08:26)   Italy Fines Apple €98.6 Million Over ATT Rules Limiting App Store Competition
23-12-25 (16:26)   Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites
23-12-25 (12:57)   INTERPOL Arrests 574 in Africa; Ukrainian Ransomware Affiliate Pleads Guilty
23-12-25 (12:57)   Passwd: A walkthrough of the Google Workspace Password Manager
23-12-25 (10:26)   U.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover Scheme
23-12-25 (09:12)   Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances
23-12-25 (08:12)   FCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security Risks
22-12-25 (18:26)   Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens
22-12-25 (13:26)   ⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More
22-12-25 (13:26)   How to Browse the Web More Sustainably With a Green Browser
22-12-25 (07:43)   Android Malware Operations Merge Droppers, SMS Theft, and RAT Capabilities at Scale
21-12-25 (06:43)   Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence
20-12-25 (15:26)   U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware
19-12-25 (20:26)   Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers
19-12-25 (16:43)   Cracked Software and YouTube Videos Spread CountLoader and GachiLoader Malware
19-12-25 (12:43)   WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability
19-12-25 (11:43)   Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks
19-12-25 (09:43)   New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards
18-12-25 (19:12)   China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware
18-12-25 (16:12)   HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution
18-12-25 (14:43)   ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories
18-12-25 (13:26)   The Case for Dynamic AI-SaaS Security as Copilots Scale
18-12-25 (12:26)   North Korea-Linked Hackers Steal $2.02 Billion in 2025, Leading Global Crypto Theft
18-12-25 (09:57)   Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App
18-12-25 (06:57)   CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation
18-12-25 (05:43)   Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances
17-12-25 (20:12)   SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances
17-12-25 (20:12)   Kimwolf Botnet Hijacks 1.8 Million Android TVs, Launches Large-Scale DDoS Attacks
17-12-25 (16:57)   APT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing Campaign
17-12-25 (16:57)   New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails
17-12-25 (12:57)   Fix SOC Blind Spots: See Threats to Your Industry & Country in Real Time
17-12-25 (12:57)   China-Linked Ink Dragon Hacks Governments Using ShadowPad and FINALDRAFT Malware
17-12-25 (10:57)   GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads
16-12-25 (18:43)   Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign
16-12-25 (17:12)   Rogue NuGet Package Poses as Tracer.Fody, Steals Cryptocurrency Wallet Data
16-12-25 (14:12)   Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure
16-12-25 (13:12)   Why Data Security and Privacy Need to Start in Code
16-12-25 (12:12)   Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass
16-12-25 (10:12)   React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors
16-12-25 (07:43)   Google to Shut Down Dark Web Monitoring Tool in February 2026
15-12-25 (19:26)   Featured Chrome Browser Extension Caught Intercepting Millions of Users' AI Chats
15-12-25 (15:57)   FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE
15-12-25 (15:57)   Researcher Uncovers 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks
15-12-25 (13:43)   ⚡ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More
15-12-25 (13:43)   A Browser Extension Risk Guide After the ShadyPanda Campaign
15-12-25 (10:57)   Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector
15-12-25 (07:43)   VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption
13-12-25 (13:57)   CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks
13-12-25 (07:26)   Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild
12-12-25 (20:26)   Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads
12-12-25 (15:12)   New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale
12-12-25 (11:43)   Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work
12-12-25 (10:12)   New React RSC Vulnerabilities Enable DoS and Source Code Exposure
12-12-25 (10:12)   React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation
12-12-25 (06:26)   CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog
11-12-25 (14:43)   ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories
11-12-25 (14:43)   NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems
11-12-25 (14:12)   The Impact of Robotic Process Automation (RPA) on Identity and Access Management
11-12-25 (12:43)   WIRTE Leverages AshenLoader Sideloading to Install the AshTag Espionage Backdoor
11-12-25 (11:43)   Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks
11-12-25 (10:57)   Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw
11-12-25 (08:12)   Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution
10-12-25 (21:43)   React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors