News

The Hacker News50m
Meta Disrupts Influence Ops Targeting Romania, Azerbaijan, and Taiwan with Fake Personas
A second influence network disrupted by Meta originated from Iran and targeted Azeri-speaking audiences in Azerbaijan and ...
The Hacker News13h
Cybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular Tools
Fake AI installers for ChatGPT and InVideo deliver ransomware and info-stealers via SEO scams and social ads, targeting ...
The Hacker News15h
New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers
Malware with corrupted DOS and PE headers evades detection for weeks, decrypts TLS-based C2 and enables full attacker control ...
The Hacker News18h
DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints
DragonForce exploited three SimpleHelp CVEs to hijack an MSP’s RMM tool, steal data, and deploy ransomware on customer ...
The Hacker News23h
Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin
CVE-2025-47577 flaw in TI WooCommerce Wishlist lets unauthenticated attackers upload malicious files—no patch yet, 100K+ ...
The Hacker News1d
Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore
Iranian hacker pleads guilty to Robbinhood ransomware attacks causing $19M+ in losses, crippling U.S. cities via BYOVD and ...
The Hacker News1d
Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack
In March 2024, the DoJ indicted seven hackers associated with APT31, accusing them of engaging in sweeping cyber espionage ...
The Hacker News1d
Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One File
Cybersecurity researchers have discovered a security flaw in Microsoft's OneDrive File Picker that, if successfully exploited ...
The Hacker News1d
New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto
PumaBot hijacks Linux IoT devices via SSH brute-force, fakes Redis services, and mines crypto using stealthy rootkits.
The Hacker News1d
Mimo Hackers Exploit CVE-2025-32432 in Craft CMS to Deploy Cryptominer and Proxyware
Mimo exploits CVE-2025-32432 in Craft CMS days after disclosure, deploying cryptominer and proxyware for monetization.
The Hacker News1d
Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets
The ZIP archive ("BitDefender.zip") contains an executable called "StoreInstaller.exe," which includes malware configurations ...
The Hacker News1d
Hackers Are Calling Your Office: FBI Alerts Law Firms to Luna Moth's Stealth Phishing Campaign
Luna Moth uses spoofed IT domains and callback phishing to access law firm data, bypassing detection with legitimate tools.