News

The Hacker News8h
Hackers Using PDFs to Impersonate Microsoft, DocuSign, and More in Callback Phishing Campaigns
Phishing campaigns use PDF attachments and callback phishing to exploit brands like Microsoft and DocuSign, affecting ...
The Hacker News8h
North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign
North Korean cyber group targets Web3 businesses with Nim-based malware, exploiting AppleScript and Telegram for persistent ...
The Hacker News15h
U.S. Sanctions Russian Bulletproof Hosting Provider for Supporting Cybercriminals Behind Ransomware
U.S. sanctions Russian BPH provider Aeza Group for hosting ransomware attacks, dark web drugs, and cybercrime.
The Hacker News14h
That Network Traffic Looks Legit, But it Could be Hiding a Serious Threat
SOCs face evolving cyber threats as 80% of attacks mimic user behavior. Discover how multi-layered NDR detection strategies ...
The Hacker News19h
Vercel's v0 AI Tool Weaponized by Cybercriminals to Rapidly Create Fake Login Pages at Scale
Unknown threat actors have been observed weaponizing v0, a generative artificial intelligence (AI) tool from Vercel, to ...
The Hacker News20h
TA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware Campaigns
Proofpoint tracks overlapping tactics of TA829 and UNK_GreenSec, deploying TransferLoader and RomCom RAT globally.
The Hacker News1d
Chrome Zero-Day CVE-2025-6554 Under Active Attack — Google Issues Security Update
CVE-2025-6554 is the fourth zero-day vulnerability in Chrome to be addressed by Google since the start of the year after ...
The Hacker News20h
U.S. Agencies Warn of Rising Iranian Cyber Attacks on Defense, OT Networks, and Critical Infrastructure
U.S. issues warning on potential Iranian cyber-attacks, urging stronger protections for critical infrastructure and defense sectors.
The Hacker News1d
New Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified Status
A security flaw in IDEs like Visual Studio Code lets attackers bypass extension verification, running malicious code on ...
The Hacker News1d
Critical Vulnerability in Anthropic's MCP Exposes Developer Machines to Remote Exploits
Cybersecurity researchers have discovered a critical security vulnerability in artificial intelligence (AI) company Anthropic ...
The Hacker News1d
Europol Dismantles $540 Million Cryptocurrency Fraud Network, Arrests Five Suspects
Europol on Monday announced the takedown of a cryptocurrency investment fraud ring that laundered €460 million ($540 million) ...
The Hacker News1d
Microsoft Removes Password Management from Authenticator App Starting August 2025
Microsoft will end password support in Authenticator by August 2025, shifting to Microsoft account syncing via Edge.