The Hacker News41m
Phishing-as-a-Service "Rockstar 2FA" Targets Microsoft 365 Users with AiTM Attacks
Rockstar 2FA phishing kit bypasses MFA, stealing Microsoft 365 credentials via AitM attacks and trusted platforms.
The Hacker News1h
Microsoft Fixes AI, Cloud, and ERP Security Flaws; One Exploited in Active Attacks
Microsoft patches four critical security flaws, including an exploited privilege escalation vulnerability in Partner Center.
The Hacker News4h
U.S. Citizen Sentenced for Spying on Behalf of China's Intelligence Agency
A 59-year-old U.S. citizen who immigrated from the People's Republic of China (PRC) has been sentenced to four years in ...
The Hacker News17h
Over Two Dozen Flaws Identified in Advantech Industrial Wi-Fi Access Points – Patch ASAP
Advantech patches critical flaws in industrial Wi-Fi devices enabling remote code execution and persistent access.
The Hacker News1d
XML-RPC npm Library Turns Malicious, Steals Data, Deploys Crypto Miner
Cybersecurity experts discover a year-long npm attack stealing sensitive data and mining cryptocurrency via hidden ...
The Hacker News1d
Cybercriminals Exploit Popular Game Engine Godot to Distribute Cross-Platform Malware
"Cybercriminals have been taking advantage of Godot Engine to execute crafted GDScript code which triggers malicious commands ...
The Hacker News1d
U.S. Telecom Giant T-Mobile Detects Network Intrusion Attempts from Wireline Provider
T-Mobile thwarts cyber intrusion from wireline provider’s network, ensuring no data breach or service disruption.
The Hacker News1d
Researchers Discover "Bootkitty" – First UEFI Bootkit Targeting Linux Kernels
Dubbed Bootkitty by its creators who go by the name BlackCat, the bootkit is assessed to be a proof-of-concept (PoC) and ...
The Hacker News2d
Matrix Botnet Exploits IoT Devices in Widespread DDoS Botnet Campaign
A threat actor named Matrix has been linked to a widespread distributed denial-of-service (DoD) campaign that leverages ...
The Hacker News1d
Critical Flaw in ProjectSend Under Active Exploitation Against Public-Facing Servers
A critical security flaw impacting the ProjectSend open-source file-sharing application has likely come under active ...
The Hacker News3d
Flying Under the Radar - Security Evasion Techniques
Discover how modern phishing attacks use advanced evasion techniques to bypass security and target sensitive data.
The Hacker News2d
INTERPOL Busts African Cybercrime: 1,006 Arrests, 134,089 Malicious Networks Dismantled
An INTERPOL-led operation has led to the arrest of 1,006 suspects across 19 African countries and the takedown of 134,089 ...