The Hacker News2h
New EAGERBEE Variant Targets ISPs and Governments with Advanced Backdoor Capabilities
In the latest set of attacks involving EAGERBEE, an injector DLL is designed to launch the backdoor module, which is then ...
The Hacker News2h
CISA: No Wider Federal Impact from Treasury Cyber Attack, Investigation Ongoing
Chinese hackers exploited BeyondTrust API keys in a major Treasury cyberattack; CISA confirms no wider federal impact.
The Hacker News4h
Moxa Alerts Users to High-Severity Vulnerabilities in Cellular and Secure Routers
Two severe vulnerabilities (CVE-2024-9138, CVE-2024-9140) in Moxa routers risk privilege escalation and command execution.
The Hacker News7h
FireScam Android Malware Poses as Telegram Premium to Steal Data and Control Devices
FireScam malware disguises as Telegram Premium, exploiting permissions for data theft and persistent device control ...
The Hacker News7h
India Proposes Digital Data Rules with Tough Penalties and Cybersecurity Requirements
India's draft DPDP Rules empower citizens with data rights, strict security mandates, and ₹250 crore penalties. Feedback open ...
The Hacker News7h
PLAYFULGHOST Delivered via Phishing and SEO Poisoning in Trojanized VPN Apps
PLAYFULGHOST malware mimics Gh0st RAT with advanced spyware features, targeting users via phishing and SEO poisoning ...
The Hacker News23h
âš¡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan]
Stay ahead of the latest threats with our weekly cybersecurity updates. It’s quick, simple, and keeps you safe.
The Hacker News1d
Cybercriminals Target Ethereum Developers with Fake Hardhat npm Packages
Malicious npm packages impersonate Hardhat, exfiltrating private keys and mnemonics, with 1,092 downloads reported.
The Hacker News1d
From $22M in Ransom to +100M Stolen Records: 2025's All-Star SaaS Threat Actors to Watch
SaaS threats soared in 2024, with 7,000 password attacks blocked per second, phishing up 58%, and $3.5 billion in losses.
The Hacker News3d
U.S. Sanctions Chinese Cybersecurity Firm for State-Backed Hacking Campaigns
U.S. sanctions Integrity Technology Group for aiding Flax Typhoon's state-sponsored hacks, targeting U.S. systems since 2021.
The Hacker News2d
Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution
CVE-2024-43405 in Nuclei allows signature bypass, enabling arbitrary code execution. Update to version 3.3.7 for critical ...
The Hacker News4d
Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT
Malicious npm package 'ethereumvulncontracthandler' delivers Quasar RAT to Windows systems, bypassing sandbox defenses, with ...