News

The Hacker News36m
Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins
Threat actors are leveraging an artificial intelligence (AI) powered presentation platform named Gamma in phishing attacks to ...
The Hacker News55m
From Third-Party Vendors to U.S. Tariffs: The New Cyber Risks Facing Supply Chains
Cyber threats targeting supply chains have become a growing concern for businesses across industries. As companies continue ...
The Hacker News1h
Product Walkthrough: A Look Inside Wing Security's Layered SaaS Identity Defense
Wing Security's SaaS platform is a multi-layered solution that combines posture management with real-time identity threat ...
The Hacker News1h
New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks
"The controller could open a reverse shell," Trend Micro researcher Fernando Mercês said in a technical report published ...
The Hacker News4h
Chinese Android Phones Shipped with Fake WhatsApp, Telegram Apps Targeting Crypto Users
Cheap Android smartphones manufactured by Chinese companies have been observed pre-installed with trojanized apps ...
The Hacker News7h
U.S. Govt. Funding for MITRE's CVE Ends April 16, Cybersecurity Community on Alert
Tim Peck, Senior Threat Researcher at Securonix, told The Hacker News that a lapse could have massive consequences for the ...
The Hacker News22h
Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders
Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that's ...
The Hacker News22h
Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence
The disclosure comes weeks after another critical vulnerability was disclosed in Apache Parquet's Java Library ( ...
The Hacker News22h
Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool
UNC5174 uses SNOWLIGHT and VShell to target Linux and macOS systems, exploiting Ivanti flaws for remote control.
The Hacker News8h
Crypto Developers Targeted by Python Malware Disguised as Coding Challenges
"Slow Pisces engaged with cryptocurrency developers on LinkedIn, posing as potential employers and sending malware disguised as coding challenges," security researcher Prashil Pattni said. "These ...
The Hacker News22h
Majority of Browser Extensions Can Access Sensitive Enterprise Data, New Report Finds
LayerX today announced the release of the Enterprise Browser Extension Security Report 2025, This report is the first and only report to merge public extension marketplace statistics with real-world ...