News

The Hacker News11h
BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. - Dutch Operation
Dutch and U.S. law enforcement have dismantled a long-running criminal proxy botnet powered by over 7,000 infected IoT and ...
The Hacker News11h
Beyond Vulnerability Management – Can You CVE What I CVE?
The current approach to vulnerability management is rooted in its name: focusing on "vulnerabilities" (as defined by CVE, ...
The Hacker News16h
Deploying AI Agents? Learn to Secure Them Before Hackers Strike Your Business
AI agents are changing the way businesses work. They can answer questions, automate tasks, and create better user experiences ...
The Hacker News21h
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
China-based hackers exploited SAP flaw CVE-2025-31324 since April 29, impacting global industries via web shells.
The Hacker News17h
Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
Google on Thursday announced it's rolling out new artificial intelligence (AI)-powered countermeasures to combat scams across ...
The Hacker News16h
Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
"The spam message uses the Brazilian electronic invoice system, NF-e, as a lure to entice users into clicking hyperlinks and ...
The Hacker News17h
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
Malicious npm packages targeting Cursor macOS users stole credentials and disabled updates, impacting 3,200+ downloads.
The Hacker News1d
Qilin Ransomware Ranked Highest in April 2025 with 72 Data Leak Disclosures
Recent data shared by Group-IB shows that disclosures on Qilin's data leak site have more than doubled since February 2025, ...
The Hacker News1d
Security Tools Alone Don't Protect You — Control Effectiveness Does
Security has never been about simply having the right tools. It is about understanding whether those tools are ready for the ...
The Hacker News1d
SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root
CVE-2025-32819 (CVSS score: 8.8) - A vulnerability in SMA100 allows a remote authenticated attacker with SSL-VPN user ...
The Hacker News1d
MirrorFace Targets Japan and Taiwan with ROAMINGMOUSE and Upgraded ANEL Malware
MirrorFace deployed ROAMINGMOUSE and updated ANEL malware in March 2025 to target Japan and Taiwan's government systems ...
The Hacker News1d
Russian Hackers Using ClickFix Fake CAPTCHA to Deploy New LOSTKEYS Malware
The Russia-linked threat actor known as COLDRIVER has been observed distributing a new malware called LOSTKEYS as part of an ...