The Hacker News3 小时
YouTube Game Cheats Spread Arcane Stealer Malware to Russian-Speaking Users
YouTube game cheat videos deliver Arcane stealer malware; attack chain extracts sensitive data via batch files and PowerShell ...
The Hacker News5 小时
Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
According to Bazydlo and researcher Sina Kheirkhah, CVE-2025-23120 stems from Veeam's inconsistent handling of ...
The Hacker News7 小时
Six Governments Likely Use Israeli Paragon Spyware to Hack IM Apps and Harvest Data
The governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are likely customers of spyware developed by ...
The Hacker News8 小时
Why Continuous Compliance Monitoring Is Essential For IT Managed Service Providers
Continuous compliance monitoring provides real-time visibility into security, data protection, and regulatory adherence. This ...
The Hacker News14 小时
New Ad Fraud Campaign Exploits 331 Apps with 60M+ Downloads for Phishing and Intrusive Ads
Android apps with 60M+ downloads ran full-screen ads, stole credentials, and bypassed security in a large-scale ad fraud and ...
The Hacker News12 小时
CERT-UA Warns: Dark Crystal RAT Targets Ukrainian Defense via Malicious Signal Messages
CERT-UA warns of a DCRat campaign via Signal targeting Ukrainian defense; UAC-0200 active since summer 2024 risks breaches.
The Hacker News9 小时
CISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active Exploitation
CISA adds flaw CVE-2024-48248 to NAKIVO pre-10.11.3; active exploit risks data exposure, FCEB must mitigate by April 9, 2025.
The Hacker News1 天
Hackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig Miners
Hackers exploit PHP flaw (CVE-2024-4577) to deploy Quasar RAT and XMRig miners, with Taiwan hit hardest. Update PHP now to ...
The Hacker News1 天
Leaked Black Basta Chats Suggest Russian Officials Aided Leader's Escape from Armenia
Leaked Black Basta chats reveal Russian aid in leader’s escape, AI-assisted fraud, and BRUTED credential attacks on firewalls ...
The Hacker News1 天
China-Linked MirrorFace Deploys ANEL and AsyncRAT in New Cyber Espionage Operation
MirrorFace targets an EU diplomatic group using ANEL and AsyncRAT, marking a shift in its cyber espionage tactics beyond ...
The Hacker News1 天
New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking
CVE-2024-54085 in AMI MegaRAC BMC allows remote control, malware deployment, and server damage; patches released March 11, ...
The Hacker News1 天
CISA Warns of Active Exploitation in GitHub Action Supply Chain Compromise
CISA warns of CVE-2025-30066, a GitHub supply chain attack exposing secrets via compromised actions logs. Update ...