News

The Hacker News4h
Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App
A noteworthy aspect of UNC6040's activities involves the use of a modified version of Salesforce's Data Loader that victims ...
The Hacker News7h
Chaos RAT Malware Targets Windows and Linux via Fake Network Tool Downloads
Acronis said that the Linux variants of the malware have since been detected in the wild, often in connection with ...
The Hacker News14h
HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass
Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce ...
The Hacker News8h
Your SaaS Data Isn't Safe: Why Traditional DLP Solutions Fail in the Browser Era
Legacy DLP tools miss 70% of data leaks now happening in-browser across SaaS and AI apps. Learn why this matters.
The Hacker News1d
Fake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack
Fake Gitcode and DocuSign sites are tricking users into running PowerShell scripts that install NetSupport RAT.
The Hacker News1d
Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets
A growing number of malicious campaigns have leveraged a recently discovered Android banking trojan called Crocodilus to ...
The Hacker News1d
Cryptojacking Campaign Exploits DevOps APIs Using Off-the-Shelf Tools from GitHub
Cybersecurity researchers have discovered a new cryptojacking campaign that's targeting publicly accessible DevOps web ...
The Hacker News2d
Preinstalled Apps on Ulefone, Krüger&Matz Phones Let Any App Reset Device, Steal PIN
Three security vulnerabilities have been disclosed in preloaded Android applications on smartphones from Ulefone and ...
The Hacker News2d
Fake Recruiter Emails Target CFOs Using Legit NetBird Tool Across 6 Global Regions
Cybersecurity researchers have warned of a new spear-phishing campaign that uses a legitimate remote access tool called ...
The Hacker News2d
Qualcomm Fixes 3 Zero-Days Used in Targeted Android Attacks via Adreno GPU
Qualcomm has shipped security updates to address three zero-day vulnerabilities that it said have been exploited in limited, ...
The Hacker News1d
Microsoft and CrowdStrike Launch Shared Threat Actor Glossary to Cut Attribution Confusion
Microsoft and CrowdStrike map over 80 threat actors to reduce naming confusion and help analysts respond faster.
The Hacker News1d
New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch
Google fixed CVE-2025-5419 in Chrome after detecting active exploitation, affecting all platforms using V8 engine.