The Hacker News11h
Ballista Botnet Exploits Unpatched TP-Link Vulnerability, Infects Over 6,000 Devices
Ballista botnet exploits TP-Link router flaw CVE-2023-1389, infecting 6,000+ devices worldwide and evolving to use TOR.
The Hacker News9h
Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks
Blind Eagle targeted 1,600 victims in Colombia using spear-phishing, exploiting CVE-2024-43451, and distributing malware via ...
The Hacker News21h
CISA Adds Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM to KEV List
CISA Adds Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM to KEV List | Read more hacking news ...
The Hacker News14h
Steganography Explained: How XWorm Hides Inside Images
Cybercriminals use steganography to hide malware inside images, evading security tools and enabling stealthy attacks. Learn ...
The Hacker News13h
Your Risk Scores Are Lying: Adversarial Exposure Validation Exposes Real Threats
Compliance isn’t security. Adversarial Exposure Validation reveals exploitable vulnerabilities, helping teams cut through the ...
The Hacker News18h
SideWinder APT Targets Maritime, Nuclear, and IT Sectors Across Asia, Middle East, and Africa
SideWinder APT expands attacks on maritime, nuclear, and IT sectors, rapidly modifying malware to evade detection.
The Hacker News21h
Desert Dexter Targets 900 Victims Using Facebook Ads and Telegram Malware Links
The activity, attributed to a threat actor dubbed Desert Dexter, was discovered in February 2025. It chiefly involves ...
The Hacker News18h
Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches
Moxa fixes CVE-2024-12297, a critical PT switch flaw (CVSS 9.2) enabling authentication bypass. Users must update firmware or ...
The Hacker News1d
Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials
Hackers use polymorphic browser extensions to mimic real add-ons, steal credentials, and hijack accounts. Affects Chrome, ...
The Hacker News1d
CTM360 Uncovers a Large-Scale Fake Play Store Scam Targeting Global Users: PlayPraetor Trojan
CTM360 detects 6,000+ fake Google Play pages spreading PlayPraetor malware, stealing banking credentials and MFA codes for ...
The Hacker News1d
Identity Attacks: Prevention isn't Enough
In today's threat landscape, identity security demands more than just prevention. By combining SSPM with ITDR, organizations ...
The Hacker News1d
SilentCryptoMiner Infects 2,000 Russian Users via Fake VPN and DPI Bypass Tools
SilentCryptoMiner infects 2,000 users by posing as a restriction bypass tool, leveraging YouTube and Telegram for distribution.