The Hacker News55 分钟
RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks
RomCom exploits Firefox and Windows zero-day flaws to deliver malware via fake websites in Europe and North America.
The Hacker News1 小时
Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks
Installed on over 200,000 WordPress sites, CleanTalk's Spam protection, Anti-Spam, FireWall plugin is advertised as a ...
The Hacker News4 小时
Chinese Hackers Use GHOSTSPIDER Malware to Hack Telecoms Across 12+ Countries
China-linked Earth Estries uses GHOSTSPIDER malware to hack telecoms and governments globally, breaching 20+ entities.
The Hacker News10 小时
CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks
CISA flags Array Networks flaw CVE-2023-28461 for active exploitation; agencies urged to patch by December 16.
The Hacker News21 小时
Defensible Security Architecture and Engineering: Designing and Building Defenses for the ...
Verizon DBIR shows 180% surge in vulnerability exploits. Learn Zero Trust principles to counter modern threats.
The Hacker News1 天
PyPI Python Library "aiocpa" Found Exfiltrating Crypto Keys via Telegram Bot
Signs of malicious activity were first spotted in version 0.1.13 of the library, which included a change to the Python script ...
The Hacker News1 天
Cybersecurity Blind Spots in IaC and PaC Tools Expose Cloud Platforms to New Attacks
Cybersecurity researchers have disclosed two new attack techniques against infrastructure-as-code (IaC) and policy-as-code ...
The Hacker News1 天
Google's New Restore Credentials Tool Simplifies App Login After Android Migration
Google has introduced a new feature called Restore Credentials to help users restore their account access to third-party apps ...
The Hacker News1 天
THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 18 - Nov 24)
From state-sponsored hacks targeting telecom giants to critical vulnerabilities putting thousands at risk, this week’s news ...
The Hacker News1 天
Flying Under the Radar - Security Evasion Techniques
Discover how modern phishing attacks use advanced evasion techniques to bypass security and target sensitive data.
The Hacker News3 天
Google Exposes GLASSBRIDGE: A Pro-China Influence Network of Fake News Sites
Microsoft and Google expose China-based cyber threats Storm-2077 and GLASSBRIDGE, targeting U.S. agencies and amplifying ...
The Hacker News3 天
North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn
The North Korea-linked threat actor known as Sapphire Sleet is estimated to have stolen more than $10 million worth of ...