News

The Hacker News41m
Newly Emerged GLOBAL GROUP RaaS Expands Operations with AI-Driven Negotiation Tools
GLOBAL GROUP ransomware, launched in June 2025, targets industries across multiple regions with AI-powered negotiation and ...
The Hacker News4h
State-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian Governments
A new state-backed campaign using HazyBeacon malware targets Southeast Asian governments to collect sensitive data via AWS ...
The Hacker News8h
North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign
North Korean hackers continue attacking open-source software via npm packages. 67 new malicious packages with XORIndex Loader ...
The Hacker News23h
⚡ Weekly Recap: Scattered Spider Arrests, Car Exploits, macOS Malware, Fortinet RCE and More
From Bluetooth exploits in vehicles to macOS backdoors and GitHub phishing tricks—this week’s threats go deeper than they ...
The Hacker News23h
New PHP-Based Interlock RAT Variant Uses FileFix Delivery Mechanism to Target Multiple Industries
The JavaScript code acts as a traffic distribution system (TDS), using IP filtering techniques to redirect users to fake ...
The Hacker News23h
Everything to Know about Runtime Reachability
Explore runtime reachability and why function-level execution is key to reducing false positives in vulnerability scanning.
The Hacker News22h
The Unusual Suspect: Git Repos
A fake CAPTCHA is all it takes. Interlock ransomware is back—now pushing a stealthy PHP RAT via “FileFix,” a spin on ClickFix ...
The Hacker News1d
CBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call Center
CBI's Operation Chakra V dismantles a transnational tech support scam targeting UK, Australia. Over £390,000 lost in UK, two ...
The Hacker News1d
eSIM Vulnerability in Kigen's eUICC Cards Exposes Billions of IoT Devices to Malicious Attacks
Furthermore, the vulnerability could facilitate the extraction of the Kigen eUICC identity certificate, thereby making it ...
The Hacker News3d
Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)
Fortinet fixes a critical SQL injection vulnerability in FortiWeb (CVE-2025-25257), posing risks to database security.
The Hacker News3d
Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals
Pay2Key.I2P ransomware resurfaces in 2025, offering 80% profit to affiliates targeting Israel and the U.S., netting $4 ...
The Hacker News3d
PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution
Researchers uncover PerfektBlue flaws in OpenSynergy’s BlueSDK, exposing millions of vehicles to remote code execution ...