News

The Hacker News2h
Xinbi Telegram Market Tied to $8.4B in Crypto Crime, Romance Scams, North Korea Laundering
Xinbi enabled $8.4B in Telegram-based transactions since 2022, fueling cybercrime, scams, and crypto laundering.
The Hacker News3h
CTM360 Identifies Surge in Phishing Attacks Targeting Meta Business Users
Cybersecurity researchers at CTM360 revealed that attackers behind Meta Mirage impersonate official Meta communications, ...
The Hacker News5h
Earth Ammit Breached Drone Supply Chains via ERP in VENOM, TIDRONE Campaigns
Earth Ammit breached drone supply chains in VENOM and TIDRONE campaigns (2023–2024), compromising military targets via ERP ...
The Hacker News7h
Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails
Horabot malware campaign hits Latin America via invoice lures, steals data from 8+ browsers, and spreads using Outlook.
The Hacker News13h
Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks
Separately, Ivanti has also shipped patches to contain an authentication bypass flaw in on-premise versions of Neurons for ...
The Hacker News13h
Fortinet Patches CVE-2025-32756 Zero-Day RCE Flaw Exploited in FortiVoice Systems
Fortinet patched CVE-2025-32756, a zero-day flaw exploited in FortiVoice systems, risking remote code execution.
The Hacker News1d
China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide
SAP NetWeaver instances hacked via CVE-2025-31324 + Confirmed China-nexus APT involvement + Critical infrastructure at risk.
The Hacker News1d
Türkiye Hackers Exploited Output Messenger Zero-Day to Drop Golang Backdoors on Kurdish Servers
A Türkiye-affiliated threat actor exploited a zero-day security flaw in an Indian enterprise communication platform called ...
The Hacker News1d
Malicious PyPI Package Posing as Solana Tool Stole Source Code in 761 Downloads
The package, named solana-token, is no longer available for download from PyPI, but not before it was downloaded 761 times.
The Hacker News2d
Fake AI Tools Used to Spread Noodlophile Malware, Targeting 62,000+ via Facebook Lures
"Instead of relying on traditional phishing or cracked software sites, they build convincing AI-themed platforms – often ...
The Hacker News2d
ASUS Patches DriverHub RCE Flaws Exploitable via HTTP and Crafted .ini Files
"If you run AsusSetup.exe with the -s flag (DriverHub calls it using this to do a silent install), it will execute whatever ...
The Hacker News1d
North Korean Konni APT Targets Ukraine with Malware to track Russian Invasion Progress
Konni APT, also known as Opal Sleet, Osmium, TA406, and Vedalia, is a cyber espionage group that has a history of targeting ...