The Hacker News1h
New Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHP
Glutton malware by APT41 targets PHP systems globally, exploiting frameworks like Laravel and ThinkPHP, with unencrypted C2 ...
The Hacker News15h
DeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA Pages
Malvertising campaign DeceptionAds exploited 3,000+ sites, delivering 1M+ daily impressions via fake CAPTCHA redirects, ...
The Hacker News15h
NoviSpy Spyware Installed on Journalist's Phone After Unlocking It With Cellebrite Tool
Serbian police allegedly used Cellebrite and NoviSpy spyware to compromise a journalist's phone, exploiting a CVE-2024-43047 ...
The Hacker News18h
Data Governance in DevOps: Ensuring Compliance in the AI Era
Robust CI/CD governance ensures secure, compliant, and ethical pipelines for AI systems, balancing agility with transparency.
The Hacker News22h
Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms
The malware has been codenamed IOCONTROL by OT cybersecurity company Claroty, highlighting its ability to attack IoT and ...
The Hacker News23h
Ukrainian Minors Recruited for Cyber Ops and Reconnaissance in Russian Airstrikes
The Security Service of Ukraine (SBU or SSU) has exposed a novel espionage campaign suspected to be orchestrated by Russia's ...
The Hacker News2d
Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole Action
Germany's BSI disrupts BADBOX malware targeting 30,000 devices, halting ad fraud, data theft, and proxy misuse.
The Hacker News2d
Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading Techniques
DLL side-loading delivers Yokai backdoor targeting Thai officials, leveraging spear-phishing lures and persistent malware ...
The Hacker News2d
New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade Detection
PUMAKIT, a stealthy Linux rootkit, uses syscall hooking, memory-resident execution, and advanced privilege escalation techniques.
The Hacker News2d
FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K Seized
"The Rydox marketplace has conducted over 7,600 sales of personally identifiable information (PII), stolen access devices, ...
The Hacker News2d
390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits
The yawpp GitHub project is said to have enabled the exfiltration of over 390,000 credentials, likely for WordPress accounts, ...