News

The Hacker News9h
Alert: Exposed JDWP Interfaces Lead to Crypto Mining, Hpingbot Targets SSH for DDoS
Threat actors leverage exposed JDWP interfaces for code execution and cryptocurrency mining, with global scanning activity ...
The Hacker News9h
Taiwan NSB Alerts Public on Data Risks from TikTok, Weibo, and RedNote Over China Ties
Taiwan NSB warns of security risks from Chinese apps, citing excessive data collection and sharing with China.
The Hacker News2d
Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms
Chinese hackers exploited Ivanti CSA zero-days, targeting French government, media, and telecom sectors in September 2024.
The Hacker News1d
Massive Android Fraud Operations Uncovered: IconAds, Kaleidoscope, SMS Malware, NFC Scams
It's worth noting that IconAds is a variant of a threat that's also tracked by other cybersecurity vendors under the names ...
The Hacker News1d
NightEagle APT Exploits Microsoft Exchange Flaw to Target China's Military and Tech Sectors
Cybersecurity researchers uncover NightEagle APT exploiting zero-day in Microsoft Exchange servers, targeting government, ...
The Hacker News1d
Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros
Two critical vulnerabilities in Sudo command-line tool allow privilege escalation for local attackers on Linux systems ...
The Hacker News2d
Over 40 Malicious Firefox Extensions Target Cryptocurrency Wallets, Stealing User Assets
Over 40 malicious Firefox extensions impersonating popular crypto wallets have been uncovered, putting digital assets at risk ...
The Hacker News1d
Google Ordered to Pay $314M for Misusing Android Users' Cellular Data Without Permission
Google has been ordered by a court in the U.S. state of California to pay $314 million over charges that it misused Android ...
The Hacker News3d
U.S. Sanctions Russian Bulletproof Hosting Provider for Supporting Cybercriminals Behind Ransomware
U.S. sanctions Russian BPH provider Aeza Group for hosting ransomware attacks, dark web drugs, and cybercrime.
The Hacker News3d
Vercel's v0 AI Tool Weaponized by Cybercriminals to Rapidly Create Fake Login Pages at Scale
Unknown threat actors have been observed weaponizing v0, a generative artificial intelligence (AI) tool from Vercel, to ...
The Hacker News2d
⚡ Weekly Recap: Airline Hacks, Citrix 0-Day, Outlook Malware, Banking Trojans and more
Day, Outlook Malware, Banking Trojans and more | Read more hacking news on The Hacker News cybersecurity news website and ...
The Hacker News4d
Microsoft Removes Password Management from Authenticator App Starting August 2025
Microsoft will end password support in Authenticator by August 2025, shifting to Microsoft account syncing via Edge.