The Hacker News

11 February 2026 10:04

Security startup @zast_ai secured new backing to scale AI-driven vulnerability validation.

Its research led to 119 CVE assignments after uncovering hundreds of zero-days. Affected targets included Azure SDK, Apache Struts, and Alibaba Nacos.

🔗 Funding, research scope, enterprise impact → https://thehackernews.com/2026/02/zastai-raises-6m-pre-to-scale-zero.html

The Hacker News

09 February 2026 12:27

🧪⚡ SOC teams aren’t failing on tools — they’re overloaded by triage. Constant validation loops are fueling burnout and SLA drift.

CISOs are moving to sandbox-first workflows, exposing live behavior early and reducing escalations, MTTR, and senior drag.

🔗 How evidence replaces guesswork → https://thehackernews.com/2026/02/how-top-cisos-solve-burnout-and-speed.html

The Hacker News

04 February 2026 11:38

🛠️📊🔍 Most incident response failures start in the first moments. Early responder decisions on evidence and scope shape the case.

That window repeats as scope expands. Isolating systems too fast can hide real intrusion patterns.

🔗 Inside the first 90 seconds → https://thehackernews.com/2026/02/the-first-90-seconds-how-early.html

The Hacker News

30 January 2026 10:26

The FBI has seized the RAMP cybercrime forum, shutting down its Tor site and clearnet domain with DOJ coordination.

Threat actors are already migrating to other platforms, underscoring how fast the underground re-forms after takedowns.

🔗 Read → https://thehackernews.com/2026/01/threatsday-bulletin-new-rces-darknet.html#major-cybercrime-forum-takedown

The Hacker News

30 December 2025 17:29

Singapore’s CSA warns of a critical flaw in SmarterMail email servers.

The bug allows unauthenticated remote code execution via arbitrary file upload, scoring a perfect 10.0 on CVSS.

Any exposed server could be taken over without login.

🔗 Read → https://thehackernews.com/2025/12/csa-issues-alert-on-critical.html

The Hacker News

26 November 2025 15:33

🔥 Hackers hit South Korea’s banks through one IT vendor — spreading Qilin ransomware to 28 firms and stealing 2 TB of data.

Evidence suggests Russian and North Korean groups worked together.

Full story ↓ https://thehackernews.com/2025/11/qilin-ransomware-turns-south-korean-msp.html

The Hacker News

25 November 2025 07:46

🛑 State-linked hackers are hijacking Signal, WhatsApp, and Telegram accounts using spyware disguised as real apps — some use zero-click bugs on iPhones and Androids.

Targets include diplomats and officials across the U.S., Europe, and the Middle East.

Read the full report ↓ https://thehackernews.com/2025/11/cisa-warns-of-active-spyware-campaigns.html

The Hacker News

20 November 2025 08:36

⚡ Iranian hackers helped aim real missiles.

They broke into ship tracking systems and live cameras — then the ships got attacked days later.

Amazon says this marks a new kind of war: where hacking meets real-world strikes.

More on how it happened ↓ https://thehackernews.com/2025/11/iran-linked-hackers-mapped-ship-ais.html

The Hacker News

08 November 2025 15:32

🔥 Wild find from Microsoft.

Even when your AI chats are encrypted, someone watching the network can still guess what you’re talking about.

They call it "Whisper Leak" side-channel attack.

And in tests, models like OpenAI and Mistral gave away topics with 98% accuracy.

Worth your attention ↓ https://thehackernews.com/2025/11/microsoft-uncovers-whisper-leak-attack.html

The Hacker News

08 November 2025 10:42

A single image file could hijack Galaxy phones.

Attackers hid a ZIP inside DNG photos sent over WhatsApp, exploiting a zero-day in Samsung’s image codec (CVE-2025-21042).

The implant — called LANDFALL — gave full spyware access.

Full report → https://thehackernews.com/2025/11/samsung-zero-click-flaw-exploited-to.html

The Hacker News

07 November 2025 12:56

🚨 WARNING: Malicious NuGet packages were caught hiding delayed payloads—set to fire off years from now, in 2027–2028.

They look harmless. Some even helpful. But one, Sharp7Extend, quietly sabotages PLCs—crashing processes or corrupting writes after a short delay.

Nearly 10K downloads before anyone noticed.

Here’s what’s really going on ↓ https://thehackernews.com/2025/11/hidden-logic-bombs-in-malware-laced.html

The Hacker News

07 November 2025 10:17

Google just launched a new form to report extortion scams on Google Maps.

Scammers are posting fake 1⭐ reviews, then asking business owners to pay up to remove them.

This new tool is meant to stop the surge in “review bombing” hitting small businesses.

Read how it works ↓ https://thehackernews.com/2025/11/google-launches-new-maps-feature-to.html

The Hacker News

07 November 2025 07:53

A fake VS Code extension made with AI just showed up on the Marketplace.

It ran ransomware on install — zipping, encrypting, and uploading files, all by itself.

Microsoft took it down quickly, but the developer accidentally left the control keys and decryption tools inside.

Here’s what happened and how it worked ↓ https://thehackernews.com/2025/11/vibe-coded-malicious-vs-code-extension.html

The Hacker News

06 November 2025 16:33

⚠️ A Russia-linked group posed as ESET to hack Ukrainian organizations.

They sent fake ESET installers that looked real — but quietly installed a backdoor using the Tor network.

Experts call the group InedibleOchotense, tied to Sandworm.

Full story → https://thehackernews.com/2025/11/trojanized-eset-installers-drop.html

The Hacker News

06 November 2025 13:16

New cyber rules mean every breach test counts. Most teams still run them in Excel.

At Georgetown, gain the tactical skills to plan for and respond to information security threats.

Attend our Nov. 19 webinar → https://thn.news/cyber-risk-webinar-in

The Hacker News

10 February 2026 09:26

🚨 Ivanti EPMM Zero-Day Exploits Breach Dutch Regulators, Linked to Wider 🇪🇺 EU Government Intrusions.

Attackers exploited CVSS 9.8 unauthenticated RCE flaws to access employee work contact data.
Related activity also impacted the European Commission and Finland’s Valtori systems.

🔗 Details → https://thehackernews.com/2026/02/dutch-authorities-confirm-ivanti-zero.html

The Hacker News

05 February 2026 13:15

⚠️ AI is everywhere in the enterprise — SaaS, browsers, copilots, shadow tools. Visibility is years behind adoption.

Legacy controls miss real interaction points, leaving prompts, uploads, and agent workflows ungoverned.

🔗 Download guide link → https://thehackernews.com/2026/02/the-buyers-guide-to-ai-usage-control.html

The Hacker News

31 January 2026 13:03

🛑 A suspected Iran-aligned campaign targets NGOs and individuals documenting human rights abuses.

HarfangLab tracks the activity as RedKitten, using Excel files themed around deceased protesters to deliver malware.

The tooling relies on GitHub, Google Drive, and Telegram for configuration and control, with indicators suggesting parts of the code may be LLM-assisted.

🔗 Read → https://thehackernews.com/2026/01/iran-linked-redkitten-cyber-campaign.html

The Hacker News

06 January 2026 13:01

⚡ Identity risk is no longer about bad policies. It’s about blind spots.

IAM tools only cover what’s fully onboarded. Everything else becomes identity dark matter, where accounts and access exist without oversight.

As environments scale, this unmanaged layer grows quietly.

🔗 How identity goes dark → https://thehackernews.com/2026/01/what-is-identity-dark-matter.html

The Hacker News

12 December 2025 09:56

[New] React just found more bugs hiding in its last big patch.

🧩 CVE-2025-55184 & CVE-2025-67779 — can crash servers with one request.
🧩 CVE-2025-55183 — can leak source code from React Server Components.

👀 All discovered while testing the earlier CVE-2025-55182 fix.

Update to versions 19.0.3, 19.1.4, or 19.2.3 now.

🔗 Read: https://thehackernews.com/2025/12/new-react-rsc-vulnerabilities-enable.html

The Hacker News

25 November 2025 12:47

🚨 Hackers known as "ToddyCat" found a new way to steal #Outlook emails.

Their tool TCSectorCopy skips Outlook locks and copies mail files straight from the disk — no network use, no alerts.

They also use TomBerBil and SharpTokenFinder to steal OAuth and #Microsoft365 tokens.

More details here ↓ https://thehackernews.com/2025/11/toddycats-new-hacking-tools-steal.html

The Hacker News

22 November 2025 16:20

🚨 China’s hacker group APT31 broke into Russia’s IT companies — and stayed hidden for almost two years.

They used Yandex Cloud, OneDrive, and even social media to steal data without raising alarms.

Some attacks ran on holidays when no one was watching.

Details ↓ https://thehackernews.com/2025/11/china-linked-apt31-launches-stealthy.html

The Hacker News

12 November 2025 09:38

🔥 Google just launched Private AI Compute — a new cloud system that runs AI without letting Google see your data.

It keeps Gemini models inside secure, encrypted hardware to protect privacy.

Auditors did find small flaws that could, in rare cases, expose users — but Google says fixes are on the way.

Read more ↓ https://thehackernews.com/2025/11/google-launches-private-ai-compute.html

The Hacker News

08 November 2025 10:57

Attackers are now using your cloud tools against you.

Fortinet uncovered a new campaign where stolen AWS credentials were used to run quiet recon and launch fraud from inside trusted environments.

No malware. No noise. Just normal-looking API traffic doing damage.

Read this story → https://thehackernews.com/2025/11/threatsday-bulletin-ai-tools-in-malware.html#researchers-uncover-large-scale-aws-abuse-network

The Hacker News

08 November 2025 10:41

Chinese hackers used old bugs like Log4j and Struts to break into U.S. policy networks.

Then they hid using msbuild.exe and a fake system task to stay inside.

Old tricks. New targets.

Read the details ↓ https://thehackernews.com/2025/11/from-log4j-to-iis-chinas-hackers-turn.html

The Hacker News

07 November 2025 12:27

Your company's logins could be on the dark web right now, and they could sell for as little as $15.

It only takes one click for hackers to walk right in.

Find out if your company’s credentials are exposed → https://thehackernews.com/2025/11/enterprise-credentials-at-risk-same-old.html

The Hacker News

07 November 2025 08:18

ChatGPT just helped researchers crack XLoader malware in hours — work that used to take days.

AI unpacked the code, found keys, and exposed C2 domains. Big shift for malware analysis.

Check this story ↓ https://thehackernews.com/2025/11/threatsday-bulletin-ai-tools-in-malware.html#ai-speeds-triage-but-human-skill-still-needed

The Hacker News

06 November 2025 17:35

Redis added an AI agent (Prophet Security) to its SOC, working alongside their MDR team.

The result: investigations that took hours now take about 10 minutes.

AI handles the routine alerts so humans can focus on real threats.

Here’s what actually worked ↓ https://thehackernews.com/expert-insights/2025/11/implementing-ai-in-soc-lessons-learned.html

The Hacker News

06 November 2025 16:06

🚨 Cisco warns hackers are targeting unpatched Secure Firewall ASA & FTD devices with a new attack variant exploiting two flaws — CVE-2025-20333 and CVE-2025-20362.

The attacks can crash devices (DoS) or let attackers run code as root.

Details here ↓ https://thehackernews.com/2025/11/cisco-warns-of-new-firewall-attack.html

The Hacker News

06 November 2025 12:43

🛡️ ThreatsDay Bulletin is out!

🔹 Cyber threats are getting personal.
🔹 AI helps stop attacks — but it’s also powering them.
🔹 Botnets, fake apps, and scams are growing fast.

Here’s what’s really happening this week in cyber → https://thehackernews.com/2025/11/threatsday-bulletin-ai-tools-in-malware.html