https://thehackernews.com/2026/05/9-year-old-linux-kernel-flaw-enables.html2026-05-21T13:21:09+05:30The Hacker Newsen2026-05-21T13:05:53+05:309-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major DistrosDebian, fedora, Kernel, linux, privilege escalation, Qualys, Ubuntu, Vulnerabilityhttps://thehackernews.com/2026/05/github-internal-repositories-breached.html2026-05-21T11:26:01+05:30The Hacker Newsen2026-05-21T09:57:01+05:30GitHub Internal Repositories Breached via Malicious Nx Console VS Code ExtensionCredential Theft, cybersecurity, data breach, Developer Tools, GitHub, Malware, Open Source, Supply Chain Attack, TeamPCP, VS Code Extensionhttps://thehackernews.com/2026/05/highly-critical-drupal-core-flaw.html2026-05-21T09:29:40+05:30The Hacker Newsen2026-05-21T09:14:11+05:30Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attackscybersecurity, Drupal, PostgreSQL, privilege escalation, remote code execution, Symfony, Vulnerabilityhttps://thehackernews.com/2026/05/microsoft-open-sources-rampart-and.html2026-05-21T10:09:18+05:30The Hacker Newsen2026-05-20T22:36:54+05:30Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During DevelopmentAI Agent, artificial intelligence, cybersecurity, Microsoft, Open Source, Prompt Injection, Red Teaming, Security Testinghttps://thehackernews.com/2026/05/microsoft-takes-down-malware-signing.html2026-05-20T20:06:44+05:30The Hacker Newsen2026-05-20T20:06:44+05:30Microsoft Takes Down Malware-Signing Service Behind Ransomware AttacksCloud security, code signing, Cybercrime, cybersecurity, digital Certificate, Malware, Microsoft, ransomwarehttps://thehackernews.com/2026/05/webworm-deploys-echocreep-and-graphworm.html2026-05-21T11:27:25+05:30The Hacker Newsen2026-05-20T18:21:43+05:30Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph APIBadIIS, cybersecurity, Discord, Malware, Microsoft Graph API, Webwormhttps://thehackernews.com/2026/05/agent-ai-is-coming-are-you-ready.html2026-05-20T17:32:45+05:30The Hacker Newsen2026-05-20T17:28:00+05:30Agent AI is Coming. Are You Ready?Access Management, Agent AI, cybersecurity, enterprise security, IAM, Identity Securityhttps://thehackernews.com/2026/05/github-investigating-teampcp-claimed.html2026-05-20T21:40:25+05:30The Hacker Newsen2026-05-20T17:08:43+05:30GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal ReposAWS, Cloud security, cybersecurity, GitHub, Kubernetes, Malware, Microsoft, PyPI, Software Supply Chainhttps://thehackernews.com/2026/05/typosquatting-is-no-longer-user-problem.html2026-05-20T16:00:00+05:30The Hacker Newsen2026-05-20T16:00:00+05:30Typosquatting Is No Longer a User Problem. It's a Supply Chain Problembrowser security, chrome extension, cybersecurity, Reflectiz, Supply Chain Attack, Typosquattinghttps://thehackernews.com/2026/05/microsoft-releases-mitigation-for.html2026-05-20T18:07:34+05:30The Hacker Newsen2026-05-20T13:58:26+05:30Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 ExploitBitLocker, cybersecurity, encryption, Microsoft, Vulnerability, Windows, Zero-Dayhttps://thehackernews.com/2026/05/grafana-github-breach-exposes-source.html2026-05-20T10:43:01+05:30The Hacker Newsen2026-05-20T10:42:06+05:30Grafana GitHub Breach Exposes Source Code via TanStack npm AttackCloud security, cybersecurity, data breach, GitHub, Grafana, NPM, Source Code, Supply Chain Attackhttps://thehackernews.com/2026/05/trapdoor-android-ad-fraud-scheme-hit.html2026-05-19T22:08:12+05:30The Hacker Newsen2026-05-19T22:08:12+05:30Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Appsad fraud, Android, cybersecurity, Google, Google Play, malvertising, Malware, mobile security, Threat Intelligencehttps://thehackernews.com/2026/05/dirtydecrypt-poc-released-for-linux.html2026-05-20T09:40:17+05:30The Hacker Newsen2026-05-19T20:26:26+05:30DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE VulnerabilityArch Linux, Container Security, fedora, Kernel, linux, opensuse, privilege escalation, Rocky Linux, Vulnerabilityhttps://thehackernews.com/2026/05/the-new-phishing-click-how-oauth.html2026-05-19T17:00:00+05:30The Hacker Newsen2026-05-19T17:00:00+05:30The New Phishing Click: How OAuth Consent Bypasses MFAAI Security, cybersecurity, Identity Security, MFA, Microsoft 365, OAuth, Phishing, Reco, SaaS Security, Token Securityhttps://thehackernews.com/2026/05/drupal-to-release-urgent-core-security.html2026-05-20T20:10:58+05:30The Hacker Newsen2026-05-19T16:14:45+05:30Drupal to Release Urgent Core Security Updates on May 20, Sites Told to Preparecontent management system, cybersecurity, Drupal, End Of Life, PHP, Security patch, Vulnerability, Website Securityhttps://thehackernews.com/2026/05/seppmail-secure-e-mail-gateway.html2026-05-19T14:53:15+05:30The Hacker Newsen2026-05-19T14:53:15+05:30SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Accesscybersecurity, email security, Patch Management, remote code execution, SEPPMail, Vulnerabilityhttps://thehackernews.com/2026/05/compromised-nx-console-18950-targeted.html2026-05-21T11:25:11+05:30The Hacker Newsen2026-05-19T13:19:23+05:30Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential StealerCredential Theft, cybersecurity, Developer Security, GitHub, Malware, NPM, Supply Chain Attack, VS Codehttps://thehackernews.com/2026/05/github-actions-supply-chain-attack.html2026-05-19T14:42:32+05:30The Hacker Newsen2026-05-19T10:58:06+05:30Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD CredentialsCI/CD, Credential Theft, cybersecurity, GitHub Actions, Malware, Mini Sha-Hulud, NPM, Software Security, StepSecurity, Supply Chain Attackhttps://thehackernews.com/2026/05/mini-shai-hulud-pushes-malicious-antv.html2026-05-21T11:26:20+05:30The Hacker Newsen2026-05-19T10:24:17+05:30Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer AccountCI/CD, Credential Theft, cybersecurity, Data Visualization, GitHub Actions, Malware, NPM, Open Source, React, Supply Chain Attackhttps://thehackernews.com/2026/05/interpol-operation-ramz-disrupts-mena.html2026-05-19T10:03:45+05:30The Hacker Newsen2026-05-18T22:51:18+05:30INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrestscryptocurrency, Cybercrime, cybersecurity, darknet, data theft, Fraud, Interpol, law enforcement, Malware, Phishinghttps://thehackernews.com/2026/05/weekly-recap-exchange-0-day-npm-worm.html2026-05-19T10:03:06+05:30The Hacker Newsen2026-05-18T19:20:17+05:30⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and Moreartificial intelligence, browser security, Cloud security, cybersecurity, Cybersecurity Recap, Identity Security, Malware, network security, Phishing, Vulnerabilityhttps://thehackernews.com/2026/05/how-to-reduce-phishing-exposure-before.html2026-05-18T19:29:53+05:30The Hacker Newsen2026-05-18T18:30:00+05:30How to Reduce Phishing Exposure Before It Turns into Business DisruptionAny.Run, Credential Theft, cybersecurity, Incident response, malware analysis, Phishing, security operations center, Threat Intelligencehttps://thehackernews.com/2026/05/developer-workstations-are-now-part-of.html2026-05-18T16:53:41+05:30The Hacker Newsen2026-05-18T16:53:41+05:30Developer Workstations Are Now Part of the Software Supply Chainartificial intelligence, Cloud security, Credential Theft, cybersecurity, Developer Security, GitHub, Software Development, Supply Chain Attackhttps://thehackernews.com/2026/05/ivanti-fortinet-sap-vmware-n8n-patch.html2026-05-18T22:32:25+05:30The Hacker Newsen2026-05-18T16:24:05+05:30Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flawscybersecurity, Fortinet, Ivanti, Patch Management, privilege escalation, Prototype Pollution, remote code execution, SQL Injection, Vulnerabilityhttps://thehackernews.com/2026/05/miniplasma-windows-0-day-enables-system.html2026-05-18T14:27:34+05:30The Hacker Newsen2026-05-18T14:27:34+05:30MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systemscybersecurity, Google Project Zero, Microsoft, privilege escalation, Vulnerability, Windows, Windows 11, Zero-Dayhttps://thehackernews.com/2026/05/four-malicious-npm-packages-deliver.html2026-05-18T14:27:26+05:30The Hacker Newsen2026-05-18T14:27:26+05:30Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malwarebotnet, Cloud security, cybersecurity, ddos, GitHub, Infostealer, Malware, NPM, Supply Chain Attackhttps://thehackernews.com/2026/05/pre-stuxnet-fast16-malware-tampered.html2026-05-18T14:09:26+05:30The Hacker Newsen2026-05-18T12:16:37+05:30Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons SimulationsCarbon Black, cybersecurity, Equation Group, Industrial Sabotage, Malware, SentinelOne, Simulation Software, Stuxnet, Symantechttps://thehackernews.com/2026/05/nginx-cve-2026-42945-exploited-in-wild.html2026-05-17T17:27:53+05:30The Hacker Newsen2026-05-17T17:27:53+05:30NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCECommand Injection, cybersecurity, denial of service, exploitation, NGINX, remote code execution, VulnCheck, Vulnerability, Web Shellhttps://thehackernews.com/2026/05/grafana-github-token-breach-led-to.html2026-05-18T22:38:23+05:30The Hacker Newsen2026-05-17T12:43:33+05:30Grafana GitHub Token Breach Led to Codebase Download and Extortion AttemptCoinbaseCartel, cybersecurity, Data Extortion, FBI, GitHub, Grafana, LAPSUS$, ransomware, Scattered Spider, ShinyHuntershttps://thehackernews.com/2026/05/funnel-builder-flaw-under-active.html2026-05-16T20:50:48+05:30The Hacker Newsen2026-05-16T20:50:48+05:30Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimmingcybersecurity, data breach, E-commerce Security, JavaScript, Magecart, Skimming, Vulnerability, WooCommerce, WordPresshttps://thehackernews.com/2026/05/turla-turns-kazuar-backdoor-into.html2026-05-17T12:49:47+05:30The Hacker Newsen2026-05-15T22:40:25+05:30Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Accessbotnet, cybersecurity, Malware, Microsoft, Russia, Threat Intelligencehttps://thehackernews.com/2026/05/four-openclaw-flaws-enable-data-theft.html2026-05-15T19:33:32+05:30The Hacker Newsen2026-05-15T19:05:04+05:30Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistencecybersecurity, data theft, OpenClaw, OpenShell, privilege escalation, Sandbox Escape, Vulnerabilityhttps://thehackernews.com/2026/05/what-45-days-of-watching-your-own-tools.html2026-05-15T16:30:00+05:30The Hacker Newsen2026-05-15T16:30:00+05:30What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack SurfaceAttack Surface, Bitdefender, cybersecurity, endpoint security, GravityZone, Living off the Land, powershell, Threat Detectionhttps://thehackernews.com/2026/05/tanstack-supply-chain-attack-hits-two.html2026-05-16T15:41:26+05:30The Hacker Newsen2026-05-15T16:24:44+05:30TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS UpdatesAWS, code signing, Credential Theft, cybersecurity, MacOS, Malware, Mistral AI, OpenAI, Supply Chain Attack, TanStackhttps://thehackernews.com/2026/05/on-prem-microsoft-exchange-server-cve.html2026-05-16T15:37:31+05:30The Hacker Newsen2026-05-15T11:49:04+05:30On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted EmailCross-site Scripting, cybersecurity, Exchange Server, Microsoft, Outlook, Vulnerabilityhttps://thehackernews.com/2026/05/cisa-adds-cisco-sd-wan-cve-2026-20182.html2026-05-15T15:55:06+05:30The Hacker Newsen2026-05-15T10:58:03+05:30CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access ExploitsAuthentication bypass, CISA, cisco, Command and Control, Credential Theft, cybersecurity, SD-WAN, Vulnerability, Web Shellhttps://thehackernews.com/2026/05/cisco-catalyst-sd-wan-controller-auth.html2026-05-14T23:43:03+05:30The Hacker Newsen2026-05-14T23:15:20+05:30Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin AccessAuthentication bypass, cisco, cybersecurity, NETCONF, network security, Patch Management, rapid7, Vulnerabilityhttps://thehackernews.com/2026/05/stealer-backdoor-found-in-3-node-ipc.html2026-05-16T20:27:01+05:30The Hacker Newsen2026-05-14T22:52:43+05:30Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer SecretsCloud security, cybersecurity, data exfiltration, Developer Security, Malware, NPM, Open Source, Supply Chainhttps://thehackernews.com/2026/05/threatsday-bulletin-pan-os-rce-mythos.html2026-05-14T23:37:35+05:30The Hacker Newsen2026-05-14T21:37:46+05:30ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Storiesartificial intelligence, Cloud security, Cybercrime, cybersecurity, Malware, Privacy, ransomware, Threatsday Bulletin, Vulnerabilityhttps://thehackernews.com/2026/05/ghostwriter-targets-ukrainian.html2026-05-15T15:56:55+05:30The Hacker Newsen2026-05-14T19:30:37+05:30Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt StrikeCobalt Strike, cybersecurity, data theft, Ghostwriter, Hacktivism, Remote Access Trojan, Spear Phishinghttps://thehackernews.com/2026/05/praisonai-cve-2026-44338-auth-bypass.html2026-05-15T15:56:13+05:30The Hacker Newsen2026-05-14T17:10:14+05:30PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of DisclosureAI Agent, API Security, Authentication bypass, cybersecurity, PraisonAI, Sysdig, Threat Intelligence, Vulnerabilityhttps://thehackernews.com/2026/05/how-ai-hallucinations-are-creating-real.html2026-05-14T17:00:00+05:30The Hacker Newsen2026-05-14T17:00:00+05:30How AI Hallucinations Are Creating Real Security RisksAccess Control, AI Hallucination, artificial intelligence, critical infrastructure, cybersecurity, Identity Security, Incident response, Keeper Securityhttps://thehackernews.com/2026/05/windows-zero-days-expose-bitlocker.html2026-05-14T14:55:50+05:30The Hacker Newsen2026-05-14T14:55:50+05:30Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege EscalationBitLocker, cybersecurity, Microsoft, privilege escalation, Secure Boot, Vulnerability, Windows, Zero-Dayhttps://thehackernews.com/2026/05/new-fragnesia-linux-kernel-lpe-grants.html2026-05-15T15:56:30+05:30The Hacker Newsen2026-05-14T12:36:15+05:30New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruptioncybersecurity, Kernel, linux, privilege escalation, Vulnerabilityhttps://thehackernews.com/2026/05/18-year-old-nginx-rewrite-module-flaw.html2026-05-21T12:54:27+05:30The Hacker Newsen2026-05-14T11:30:09+05:3018-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCEApplication Security, cybersecurity, denial of service, F5, NGINX, remote code execution, Vulnerability, Web Serverhttps://thehackernews.com/2026/05/microsofts-mdash-ai-system-finds-16.html2026-05-13T19:16:16+05:30The Hacker Newsen2026-05-13T19:16:02+05:30Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesdayartificial intelligence, cybersecurity, Microsoft, patch Tuesday, remote code execution, Threat Modeling, Vulnerability, Windowshttps://thehackernews.com/2026/05/azerbaijani-energy-firm-hit-by-repeated.html2026-05-13T18:31:05+05:30The Hacker Newsen2026-05-13T18:30:00+05:30Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitationchina, cybersecurity, Espionage, FamousSparrow, Microsoft Exchange, ProxyNotShellhttps://thehackernews.com/2026/05/webinar-why-your-appsec-tools-miss.html2026-05-13T23:21:16+05:30The Hacker Newsen2026-05-13T17:22:43+05:30[Webinar] How Modern Attack Paths Cross Code, Pipelines, and CloudAlert Fatigue, Application Security, Attack Path, Cloud security, DevSecOps, Threat Modelinghttps://thehackernews.com/2026/05/most-remediation-programs-never-confirm.html2026-05-13T17:14:50+05:30The Hacker Newsen2026-05-13T17:00:00+05:30Most Remediation Programs Never Confirm the Fix Actually WorkedAutomation, Cloud security, cybersecurity, Pentera, Remediation, Risk management, vulnerability managementhttps://thehackernews.com/2026/05/microsoft-patches-138-vulnerabilities.html2026-05-13T18:28:21+05:30The Hacker Newsen2026-05-13T16:06:10+05:30Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flawsartificial intelligence, Azure, Microsoft, patch Tuesday, privilege escalation, remote code execution, Secure Boot, Vulnerability, Windowshttps://thehackernews.com/2026/05/gemstuffer-abuses-150-rubygems-to.html2026-05-13T13:38:54+05:30The Hacker Newsen2026-05-13T13:38:54+05:30GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Datacybersecurity, data exfiltration, Package Registry, Ruby, RubyGems, Software Supply Chain, Web Scrapinghttps://thehackernews.com/2026/05/android-adds-intrusion-logging-for.html2026-05-13T12:25:42+05:30The Hacker Newsen2026-05-13T12:25:42+05:30Android Adds Intrusion Logging for Sophisticated Spyware ForensicsAdvanced Protection, Android, Banking Fraud, cybersecurity, encryption, Forensics, Google, Malware, Privacy, Spywarehttps://thehackernews.com/2026/05/new-exim-bdat-vulnerability-exposes.html2026-05-14T11:00:43+05:30The Hacker Newsen2026-05-12T22:14:00+05:30New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Executioncybersecurity, email security, exim, GnuTLS, Memory Corruption, remote code execution, SMTP, Vulnerabilityhttps://thehackernews.com/2026/05/rubygems-suspends-new-signups-after.html2026-05-18T14:10:30+05:30The Hacker Newsen2026-05-12T20:17:00+05:30RubyGems Suspends New Signups After Hundreds of Malicious Packages Are UploadedCredential Theft, cybersecurity, Google, Malware, Open Source, ransomware, RubyGems, software security, supply chain attackhttps://thehackernews.com/2026/05/new-trickmo-variant-uses-ton-c2-and.html2026-05-12T19:59:07+05:30The Hacker Newsen2026-05-12T18:20:00+05:30New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network PivotsAndroid, banking Trojan, Blockchain, cryptocurrency, cybersecurity, Fraud Detection, Malware, mobile security, ThreatFabrichttps://thehackernews.com/2026/05/webinar-what-riskiest-soc-alerts-go.html2026-05-12T17:28:00+05:30The Hacker Newsen2026-05-12T17:28:00+05:30Webinar: What the Riskiest SOC Alerts Go Unanswered - and How Radiant Security Can HelpAI Security, cybersecurity, DLP, MDR, MSSP, OT Security, SoC, Supply Chain Security, threat detection, WAFhttps://thehackernews.com/2026/05/mini-shai-hulud-worm-compromises.html2026-05-13T12:13:04+05:30The Hacker Newsen2026-05-12T17:16:00+05:30Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More PackagesCloud security, Credential Theft, cybersecurity, GitHub Actions, Malware, NPM, Open Source, PyPI, supply chain attack, TanStackhttps://thehackernews.com/2026/05/why-agentic-ai-is-securitys-next-blind.html2026-05-12T16:00:00+05:30The Hacker Newsen2026-05-12T16:00:00+05:30Why Agentic AI Is Security's Next Blind SpotAgentic AI, artificial intelligence, Claude Code, Cloud security, cybersecurity, GitHub Copilot, MCP, OWASP, threat detectionhttps://thehackernews.com/2026/05/instructure-reaches-ransom-agreement.html2026-05-12T13:07:45+05:30The Hacker Newsen2026-05-12T13:07:00+05:30Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas LeakCanvas, cybersecurity, data breach, network security, Phishing, ransomware, Vulnerabilityhttps://thehackernews.com/2026/05/openai-launches-daybreak-for-ai-powered.html2026-05-14T14:46:16+05:30The Hacker Newsen2026-05-12T12:25:00+05:30OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch ValidationAI Security, artificial intelligence, bug bounty, Cloud security, cybersecurity, OpenAI, Penetration Testing, software security, Threat Modeling, Vulnerabilityhttps://thehackernews.com/2026/05/ios-265-brings-default-end-to-end.html2026-05-12T12:06:25+05:30The Hacker Newsen2026-05-12T10:48:00+05:30iOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and AndroidAndroid, Apple, cybersecurity, end-to-end encryption, Google, GSMA, iOS, mobile security, RCS Messaginghttps://thehackernews.com/2026/05/teampcp-compromises-checkmarx-jenkins.html2026-05-13T10:36:14+05:30The Hacker Newsen2026-05-12T00:00:00+05:30TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain AttackCheckmarx, cybersecurity, DevSecOps, GitHub, Jenkins, Malware, software security, supply chain attack, TeamPCPhttps://thehackernews.com/2026/05/cpanel-cve-2026-41940-under-active.html2026-05-13T10:35:34+05:30The Hacker Newsen2026-05-11T23:24:00+05:30cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager BackdoorAuthentication bypass, Backdoor, botnet, cPanel, Credential Theft, Cryptomining, cybersecurity, ransomware, Vulnerability, WebHost Managerhttps://thehackernews.com/2026/05/hackers-used-ai-to-develop-first-known.html2026-05-13T10:48:50+05:30The Hacker Newsen2026-05-11T21:15:00+05:30Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass ExploitationAndroid, artificial intelligence, cybersecurity, data security, Gemini, Google, Malware, Threat Intelligence, Vulnerabilityhttps://thehackernews.com/2026/05/weekly-recap-linux-rootkit-macos-crypto.html2026-05-11T18:06:29+05:30The Hacker Newsen2026-05-11T18:06:00+05:30⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and Moreartificial intelligence, browser security, Cloud security, cybersecurity, Cybersecurity Recap, Identity Security, Malware, network security, Phishing, Vulnerabilityhttps://thehackernews.com/2026/05/your-purple-team-isnt-purple-its-just.html2026-05-11T17:21:48+05:30The Hacker Newsen2026-05-11T17:00:00+05:30Your Purple Team Isn't Purple — It's Just Red and Blue in the Same Roomartificial intelligence, BAS, cybersecurity, Penetration Testing, Purple Teaming, SIEM, SoC, threat detection, Vulnerabilityhttps://thehackernews.com/2026/05/fake-openai-privacy-filter-repo-hits-1.html2026-05-11T23:52:46+05:30The Hacker Newsen2026-05-11T12:35:00+05:30Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloadscybersecurity, Hugging Face, Malware, OpenAI, powershell, supply chain attack, Threat Intelligence, windows securityhttps://thehackernews.com/2026/05/ollama-out-of-bounds-read-vulnerability.html2026-05-11T23:53:05+05:30The Hacker Newsen2026-05-10T18:11:00+05:30Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leakcybersecurity, data breach, LLM Security, Memory Leak, Ollama, Vulnerabilityhttps://thehackernews.com/2026/05/cpanel-whm-patch-3-new-vulnerabilities.html2026-05-09T15:45:42+05:30The Hacker Newsen2026-05-09T12:46:00+05:30cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch NowCode Execution, cPanel, cybersecurity, denial of service, privilege escalation, Vulnerability, web hosting, WHMhttps://thehackernews.com/2026/05/tclbanker-banking-trojan-targets.html2026-05-16T15:39:57+05:30The Hacker Newsen2026-05-08T23:42:00+05:30TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Wormsbanking security, banking Trojan, cryptocurrency, cybersecurity, Financial Fraud, Malware, Microsoft Outlook, Phishing, Threat Intelligence, Whatsapphttps://thehackernews.com/2026/05/fake-call-history-apps-stole-payments.html2026-05-08T20:38:53+05:30The Hacker Newsen2026-05-08T20:38:00+05:30Fake Call History Apps Stole Payments From Users After 7.3 Million Play Store DownloadsAndroid, cybersecurity, ESET, Google Play Store, Group-IB, mobile security, social engineeringhttps://thehackernews.com/2026/05/one-click-total-shutdown-patient-zero.html2026-05-08T19:31:27+05:30The Hacker Newsen2026-05-08T19:31:00+05:30One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breachesartificial intelligence, cybersecurity, data breach, email security, Incident response, Malware, network security, Phishing, threat detection, Zero Trusthttps://thehackernews.com/2026/05/quasar-linux-rat-steals-developer.html2026-05-08T16:30:21+05:30The Hacker Newsen2026-05-08T16:30:00+05:30Quasar Linux RAT Steals Developer Credentials for Software Supply Chain CompromiseCredential Harvesting, cybersecurity, DevOps, linux, Remote Access Trojan, rootkit, Supply Chainhttps://thehackernews.com/2026/05/one-missed-threat-per-week-what-25m.html2026-05-08T16:00:00+05:30The Hacker Newsen2026-05-08T16:00:00+05:30One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity RiskAI Security, AWS, Cloud security, cybersecurity, EDR, endpoint security, Malware, Phishing, SoC, threat detectionhttps://thehackernews.com/2026/05/new-linux-pamdoora-backdoor-uses-pam.html2026-05-09T11:53:06+05:30The Hacker Newsen2026-05-08T14:11:00+05:30New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH CredentialsAuthentication, Backdoor, Credential Theft, cybersecurity, linux, Malware, Threat Intelligencehttps://thehackernews.com/2026/05/linux-kernel-dirty-frag-lpe-exploit.html2026-05-14T12:42:39+05:30The Hacker Newsen2026-05-08T10:42:00+05:30Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributionscybersecurity, fedora, linux, privilege escalation, red hat, Ubuntu, Vulnerabilityhttps://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.html2026-05-07T23:25:53+05:30The Hacker Newsen2026-05-07T23:25:00+05:30Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level AccessCISA, cybersecurity, data security, network security, remote code execution, Threat Intelligence, Vulnerabilityhttps://thehackernews.com/2026/05/pcpjack-credential-stealer-exploits-5.html2026-05-07T23:15:36+05:30The Hacker Newsen2026-05-07T23:15:00+05:30PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud SystemsCloud Infrastructure, Cloud security, cybersecurity, data exfiltration, Docker, Kubernetes, Malware, Threat Intelligencehttps://thehackernews.com/2026/05/pan-os-rce-exploit-under-active-use.html2026-05-07T23:28:45+05:30The Hacker Newsen2026-05-07T19:04:00+05:30PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionagecyber espionage, cybersecurity, data security, Malware, network security, Palo Alto Networks, remote code execution, Vulnerabilityhttps://thehackernews.com/2026/05/threatsday-bulletin-edge-plaintext.html2026-05-07T23:29:58+05:30The Hacker Newsen2026-05-07T17:03:00+05:30ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Storiesartificial intelligence, Cloud security, Cybercrime, cybersecurity, Malware, Privacy, ransomware, Threatsday Bulletin, Vulnerabilityhttps://thehackernews.com/2026/05/day-zero-readiness-operational-gaps.html2026-05-07T16:24:15+05:30The Hacker Newsen2026-05-07T16:24:00+05:30Day Zero Readiness: The Operational Gaps That Break Incident ResponseCloud security, cybersecurity, data breach, endpoint security, Identity Management, Incident response, network security, Risk management, SIEMhttps://thehackernews.com/2026/05/pypi-packages-deliver-zichatbot-malware.html2026-05-07T14:50:39+05:30The Hacker Newsen2026-05-07T14:50:00+05:30PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linuxcybersecurity, linux, Malware, Open Source, PyPI, Python, supply chain attack, Threat Intelligence, windows securityhttps://thehackernews.com/2026/05/vm2-nodejs-library-vulnerabilities.html2026-05-11T09:25:55+05:30The Hacker Newsen2026-05-07T09:45:00+05:30vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code ExecutionCode Injection, cybersecurity, JavaScript, Open Source, remote code execution, sandbox, software security, Vulnerabilityhttps://thehackernews.com/2026/05/mirai-based-xlabsv1-botnet-exploits-adb.html2026-05-07T01:51:02+05:30The Hacker Newsen2026-05-07T01:51:00+05:30Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS AttacksAndroid, botnet, cybersecurity, ddos, Gaming Industry, iot security, Malware, network security, Threat Intelligence, Vulnerabilityhttps://thehackernews.com/2026/05/muddywater-uses-microsoft-teams-to.html2026-05-07T14:16:48+05:30The Hacker Newsen2026-05-06T18:30:00+05:30MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware AttackCybercrime, cybersecurity, data breach, Malware, Microsoft Teams, ransomware, Remote Access Tools, social engineering, Threat Intelligencehttps://thehackernews.com/2026/05/the-hacker-news-launches-cybersecurity.html2026-05-15T18:58:16+05:30The Hacker Newsen2026-05-06T17:33:00+05:30The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now OpenCloud security, cybersecurity, CyberStars Awards, data protection, endpoint security, enterprise security, Identity Management, threat detectionhttps://thehackernews.com/2026/05/your-ai-agents-are-already-inside.html2026-05-06T16:34:50+05:30The Hacker Newsen2026-05-06T16:27:00+05:30Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?AI Agents, Cloud security, Compliance, cybersecurity, data security, enterprise security, Identity Management, Zero Trusthttps://thehackernews.com/2026/05/android-apps-get-public-verification.html2026-05-06T16:11:22+05:30The Hacker Newsen2026-05-06T14:43:00+05:30Google's Android Apps Get Public Verification to Stop Supply Chain AttacksAndroid, Application Security, cybersecurity, data security, encryption, Google, Malware, Software Integrity, supply chain attack, threat detectionhttps://thehackernews.com/2026/05/windows-phone-link-exploited-by-cloudz.html2026-05-06T14:04:23+05:30The Hacker Newsen2026-05-06T14:04:00+05:30Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPsCloud security, Credential Theft, cybersecurity, endpoint security, Malware, Remote Access Trojan, Threat Intelligence, windows securityhttps://thehackernews.com/2026/05/palo-alto-pan-os-flaw-under-active.html2026-05-07T14:16:36+05:30The Hacker Newsen2026-05-06T11:44:00+05:30Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Executioncybersecurity, Firewall, network security, Palo Alto Networks, remote code execution, Threat Intelligence, Vulnerability, zero dayhttps://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.html2026-05-05T22:16:45+05:30The Hacker Newsen2026-05-05T21:49:00+05:30Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCEApache, cybersecurity, denial of service, HTTP2, linux, remote code execution, server security, Vulnerabilityhttps://thehackernews.com/2026/05/daemon-tools-supply-chain-attack.html2026-05-06T21:30:00+05:30The Hacker Newsen2026-05-05T21:37:00+05:30DAEMON Tools Supply Chain Attack Compromises Official Installers with Malwarecybersecurity, data breach, endpoint security, Malware, network security, Remote Access Trojan, software security, supply chain attack, Threat Intelligencehttps://thehackernews.com/2026/05/china-linked-uat-8302-targets.html2026-05-05T21:30:36+05:30The Hacker Newsen2026-05-05T19:49:00+05:30China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across RegionsCloud security, cybersecurity, data breach, endpoint security, Malware, network security, Threat Intelligencehttps://thehackernews.com/2026/05/the-back-door-attackers-know-about-and.html2026-05-05T17:28:00+05:30The Hacker Newsen2026-05-05T17:28:00+05:30The Back Door Attackers Know About — and Most Security Teams Still Haven’t ClosedAccess Control, API Security, Cloud security, cybersecurity, data breach, enterprise security, Identity Management, OAuth, SaaS Security, Threat Intelligencehttps://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.html2026-05-05T17:26:49+05:30The Hacker Newsen2026-05-05T17:26:00+05:30MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attackscontent management system, cybersecurity, network security, Open Source Software, remote code execution, Vulnerability, web securityhttps://thehackernews.com/2026/05/we-scanned-1-million-exposed-ai.html2026-05-05T16:00:00+05:30The Hacker Newsen2026-05-05T16:00:00+05:30We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually IsAccess Control, API Security, artificial intelligence, Cloud security, cybersecurity, data breach, Infrastructure Security, Risk management, software development, Vulnerabilityhttps://thehackernews.com/2026/05/scarcruft-hacks-gaming-platform-to.html2026-05-05T21:30:04+05:30The Hacker Newsen2026-05-05T14:37:00+05:30ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and WindowsAndroid, Cloud security, cyber espionage, cybersecurity, data theft, Malware, supply chain attack, surveillance, Threat Intelligencehttps://thehackernews.com/2026/05/weaver-e-cology-rce-flaw-cve-2026-22679.html2026-05-06T06:44:09+05:30The Hacker Newsen2026-05-05T13:07:00+05:30Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug APIcybersecurity, data security, Enterprise Software, Malware, network security, remote code execution, Threat Intelligence, Vulnerabilityhttps://thehackernews.com/2026/05/microsoft-details-phishing-campaign.html2026-05-05T13:16:28+05:30The Hacker Newsen2026-05-05T12:05:00+05:30Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 CountriesCloud security, cybersecurity, data breach, email security, identity theft, Malware, Microsoft, Phishing, social engineering, Threat Intelligencehttps://thehackernews.com/2026/05/phishing-campaign-hits-80-orgs-using.html2026-05-05T10:38:03+05:30The Hacker Newsen2026-05-04T23:36:00+05:30Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Toolscybersecurity, data breach, endpoint security, Malware, network security, Phishing, ransomware, Remote Access, social engineering, Threat Intelligence