The Hacker News

The Hacker Newshttps://thehackernews.comMost trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to admin@thehackernews.comen-usFri, 08 May 2026 15:05:15 +0530hourly1One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity Riskhttps://thehackernews.com/2026/05/one-missed-threat-per-week-what-25m.htmlhttps://thehackernews.com/2026/05/one-missed-threat-per-week-what-25m.htmlFri, 08 May 2026 16:00:00 +0530info@thehackernews.com (The Hacker News)New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentialshttps://thehackernews.com/2026/05/new-linux-pamdoora-backdoor-uses-pam.htmlhttps://thehackernews.com/2026/05/new-linux-pamdoora-backdoor-uses-pam.htmlFri, 08 May 2026 14:11:00 +0530info@thehackernews.com (The Hacker News)Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributionshttps://thehackernews.com/2026/05/linux-kernel-dirty-frag-lpe-exploit.htmlhttps://thehackernews.com/2026/05/linux-kernel-dirty-frag-lpe-exploit.htmlFri, 08 May 2026 10:42:00 +0530info@thehackernews.com (The Hacker News)Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Accesshttps://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.htmlhttps://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.htmlThu, 07 May 2026 23:25:00 +0530info@thehackernews.com (The Hacker News)PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systemshttps://thehackernews.com/2026/05/pcpjack-credential-stealer-exploits-5.htmlhttps://thehackernews.com/2026/05/pcpjack-credential-stealer-exploits-5.htmlThu, 07 May 2026 23:15:00 +0530info@thehackernews.com (The Hacker News)One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breacheshttps://thehackernews.com/2026/05/one-click-total-shutdown-patient-zero.htmlhttps://thehackernews.com/2026/05/one-click-total-shutdown-patient-zero.htmlThu, 07 May 2026 19:20:00 +0530info@thehackernews.com (The Hacker News)PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionagehttps://thehackernews.com/2026/05/pan-os-rce-exploit-under-active-use.htmlhttps://thehackernews.com/2026/05/pan-os-rce-exploit-under-active-use.htmlThu, 07 May 2026 19:04:00 +0530info@thehackernews.com (The Hacker News)ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Storieshttps://thehackernews.com/2026/05/threatsday-bulletin-edge-plaintext.htmlhttps://thehackernews.com/2026/05/threatsday-bulletin-edge-plaintext.htmlThu, 07 May 2026 17:03:00 +0530info@thehackernews.com (The Hacker News)Day Zero Readiness: The Operational Gaps That Break Incident Responsehttps://thehackernews.com/2026/05/day-zero-readiness-operational-gaps.htmlhttps://thehackernews.com/2026/05/day-zero-readiness-operational-gaps.htmlThu, 07 May 2026 16:24:00 +0530info@thehackernews.com (The Hacker News)PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linuxhttps://thehackernews.com/2026/05/pypi-packages-deliver-zichatbot-malware.htmlhttps://thehackernews.com/2026/05/pypi-packages-deliver-zichatbot-malware.htmlThu, 07 May 2026 14:50:00 +0530info@thehackernews.com (The Hacker News)vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Executionhttps://thehackernews.com/2026/05/vm2-nodejs-library-vulnerabilities.htmlhttps://thehackernews.com/2026/05/vm2-nodejs-library-vulnerabilities.htmlThu, 07 May 2026 09:45:00 +0530info@thehackernews.com (The Hacker News)Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attackshttps://thehackernews.com/2026/05/mirai-based-xlabsv1-botnet-exploits-adb.htmlhttps://thehackernews.com/2026/05/mirai-based-xlabsv1-botnet-exploits-adb.htmlThu, 07 May 2026 01:51:00 +0530info@thehackernews.com (The Hacker News)MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attackhttps://thehackernews.com/2026/05/muddywater-uses-microsoft-teams-to.htmlhttps://thehackernews.com/2026/05/muddywater-uses-microsoft-teams-to.htmlWed, 06 May 2026 18:30:00 +0530info@thehackernews.com (The Hacker News)The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Openhttps://thehackernews.com/2026/05/the-hacker-news-launches-cybersecurity.htmlhttps://thehackernews.com/2026/05/the-hacker-news-launches-cybersecurity.htmlWed, 06 May 2026 17:33:00 +0530info@thehackernews.com (The Hacker News)Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?https://thehackernews.com/2026/05/your-ai-agents-are-already-inside.htmlhttps://thehackernews.com/2026/05/your-ai-agents-are-already-inside.htmlWed, 06 May 2026 16:27:00 +0530info@thehackernews.com (The Hacker News)Google's Android Apps Get Public Verification to Stop Supply Chain Attackshttps://thehackernews.com/2026/05/android-apps-get-public-verification.htmlhttps://thehackernews.com/2026/05/android-apps-get-public-verification.htmlWed, 06 May 2026 14:43:00 +0530info@thehackernews.com (The Hacker News)Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPshttps://thehackernews.com/2026/05/windows-phone-link-exploited-by-cloudz.htmlhttps://thehackernews.com/2026/05/windows-phone-link-exploited-by-cloudz.htmlWed, 06 May 2026 14:04:00 +0530info@thehackernews.com (The Hacker News)Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Executionhttps://thehackernews.com/2026/05/palo-alto-pan-os-flaw-under-active.htmlhttps://thehackernews.com/2026/05/palo-alto-pan-os-flaw-under-active.htmlWed, 06 May 2026 11:44:00 +0530info@thehackernews.com (The Hacker News)Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCEhttps://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.htmlhttps://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.htmlTue, 05 May 2026 21:49:00 +0530info@thehackernews.com (The Hacker News)DAEMON Tools Supply Chain Attack Compromises Official Installers with Malwarehttps://thehackernews.com/2026/05/daemon-tools-supply-chain-attack.htmlhttps://thehackernews.com/2026/05/daemon-tools-supply-chain-attack.htmlTue, 05 May 2026 21:37:00 +0530info@thehackernews.com (The Hacker News)China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regionshttps://thehackernews.com/2026/05/china-linked-uat-8302-targets.htmlhttps://thehackernews.com/2026/05/china-linked-uat-8302-targets.htmlTue, 05 May 2026 19:49:00 +0530info@thehackernews.com (The Hacker News)The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closedhttps://thehackernews.com/2026/05/the-back-door-attackers-know-about-and.htmlhttps://thehackernews.com/2026/05/the-back-door-attackers-know-about-and.htmlTue, 05 May 2026 17:28:00 +0530info@thehackernews.com (The Hacker News)MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attackshttps://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.htmlhttps://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.htmlTue, 05 May 2026 17:26:00 +0530info@thehackernews.com (The Hacker News)We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Ishttps://thehackernews.com/2026/05/we-scanned-1-million-exposed-ai.htmlhttps://thehackernews.com/2026/05/we-scanned-1-million-exposed-ai.htmlTue, 05 May 2026 16:00:00 +0530info@thehackernews.com (The Hacker News)ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windowshttps://thehackernews.com/2026/05/scarcruft-hacks-gaming-platform-to.htmlhttps://thehackernews.com/2026/05/scarcruft-hacks-gaming-platform-to.htmlTue, 05 May 2026 14:37:00 +0530info@thehackernews.com (The Hacker News)Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug APIhttps://thehackernews.com/2026/05/weaver-e-cology-rce-flaw-cve-2026-22679.htmlhttps://thehackernews.com/2026/05/weaver-e-cology-rce-flaw-cve-2026-22679.htmlTue, 05 May 2026 13:07:00 +0530info@thehackernews.com (The Hacker News)Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countrieshttps://thehackernews.com/2026/05/microsoft-details-phishing-campaign.htmlhttps://thehackernews.com/2026/05/microsoft-details-phishing-campaign.htmlTue, 05 May 2026 12:05:00 +0530info@thehackernews.com (The Hacker News)Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Toolshttps://thehackernews.com/2026/05/phishing-campaign-hits-80-orgs-using.htmlhttps://thehackernews.com/2026/05/phishing-campaign-hits-80-orgs-using.htmlMon, 04 May 2026 23:36:00 +0530info@thehackernews.com (The Hacker News)Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypasshttps://thehackernews.com/2026/05/progress-patches-critical-moveit.htmlhttps://thehackernews.com/2026/05/progress-patches-critical-moveit.htmlMon, 04 May 2026 22:04:00 +0530info@thehackernews.com (The Hacker News)⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & Morehttps://thehackernews.com/2026/05/weekly-recap-ai-powered-phishing.htmlhttps://thehackernews.com/2026/05/weekly-recap-ai-powered-phishing.htmlMon, 04 May 2026 19:53:00 +0530info@thehackernews.com (The Hacker News)2026: The Year of AI-Assisted Attackshttps://thehackernews.com/2026/05/2026-year-of-ai-assisted-attacks.htmlhttps://thehackernews.com/2026/05/2026-year-of-ai-assisted-attacks.htmlMon, 04 May 2026 17:28:00 +0530info@thehackernews.com (The Hacker News)Silver Fox Deploys ABCDoor Malware via Tax-Themed Phishing in India and Russiahttps://thehackernews.com/2026/05/silver-fox-deploys-abcdoor-malware-via.htmlhttps://thehackernews.com/2026/05/silver-fox-deploys-abcdoor-malware-via.htmlMon, 04 May 2026 17:27:00 +0530info@thehackernews.com (The Hacker News)Critical cPanel Vulnerability Weaponized to Target Government and MSP Networkshttps://thehackernews.com/2026/05/critical-cpanel-vulnerability.htmlhttps://thehackernews.com/2026/05/critical-cpanel-vulnerability.htmlMon, 04 May 2026 14:57:00 +0530info@thehackernews.com (The Hacker News)Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701Mhttps://thehackernews.com/2026/05/global-crackdown-arrests-276-shuts-9.htmlhttps://thehackernews.com/2026/05/global-crackdown-arrests-276-shuts-9.htmlMon, 04 May 2026 11:29:00 +0530info@thehackernews.com (The Hacker News)CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEVhttps://thehackernews.com/2026/05/cisa-adds-actively-exploited-linux-root.htmlhttps://thehackernews.com/2026/05/cisa-adds-actively-exploited-linux-root.htmlSun, 03 May 2026 11:56:00 +0530info@thehackernews.com (The Hacker News)Trellix Confirms Source Code Breach With Unauthorized Repository Accesshttps://thehackernews.com/2026/05/trellix-confirms-source-code-breach.htmlhttps://thehackernews.com/2026/05/trellix-confirms-source-code-breach.htmlSat, 02 May 2026 12:11:00 +0530info@thehackernews.com (The Hacker News)30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaignhttps://thehackernews.com/2026/05/30000-facebook-accounts-hacked-via.htmlhttps://thehackernews.com/2026/05/30000-facebook-accounts-hacked-via.htmlFri, 01 May 2026 23:39:00 +0530info@thehackernews.com (The Hacker News)Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attackshttps://thehackernews.com/2026/05/cybercrime-groups-using-vishing-and-sso.htmlhttps://thehackernews.com/2026/05/cybercrime-groups-using-vishing-and-sso.htmlFri, 01 May 2026 19:56:00 +0530info@thehackernews.com (The Hacker News)China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activistshttps://thehackernews.com/2026/05/china-linked-hackers-target-asian.htmlhttps://thehackernews.com/2026/05/china-linked-hackers-target-asian.htmlFri, 01 May 2026 19:32:00 +0530info@thehackernews.com (The Hacker News)Top Five Sales Challenges Costing MSPs Cybersecurity Revenuehttps://thehackernews.com/2026/05/top-five-sales-challenges-costing-msps.htmlhttps://thehackernews.com/2026/05/top-five-sales-challenges-costing-msps.htmlFri, 01 May 2026 16:00:00 +0530info@thehackernews.com (The Hacker News)Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attackshttps://thehackernews.com/2026/05/two-cybersecurity-professionals-get-4.htmlhttps://thehackernews.com/2026/05/two-cybersecurity-professionals-get-4.htmlFri, 01 May 2026 15:26:00 +0530info@thehackernews.com (The Hacker News)Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Thefthttps://thehackernews.com/2026/05/poisoned-ruby-gems-and-go-modules.htmlhttps://thehackernews.com/2026/05/poisoned-ruby-gems-and-go-modules.htmlFri, 01 May 2026 15:13:00 +0530info@thehackernews.com (The Hacker News)PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentialshttps://thehackernews.com/2026/04/pytorch-lightning-compromised-in-pypi.htmlhttps://thehackernews.com/2026/04/pytorch-lightning-compromised-in-pypi.htmlThu, 30 Apr 2026 22:01:00 +0530info@thehackernews.com (The Hacker News)ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Storieshttps://thehackernews.com/2026/04/threatsday-bulletin-sms-blaster-busts.htmlhttps://thehackernews.com/2026/04/threatsday-bulletin-sms-blaster-busts.htmlThu, 30 Apr 2026 19:25:00 +0530info@thehackernews.com (The Hacker News)New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentialshttps://thehackernews.com/2026/04/new-python-backdoor-uses-tunneling.htmlhttps://thehackernews.com/2026/04/new-python-backdoor-uses-tunneling.htmlThu, 30 Apr 2026 18:06:00 +0530info@thehackernews.com (The Hacker News)EtherRAT Distribution Spoofing Administrative Tools via GitHub Facadeshttps://thehackernews.com/2026/04/etherrat-distribution-spoofing.htmlhttps://thehackernews.com/2026/04/etherrat-distribution-spoofing.htmlThu, 30 Apr 2026 17:00:00 +0530info@thehackernews.com (The Hacker News)New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributionshttps://thehackernews.com/2026/04/new-linux-copy-fail-vulnerability.htmlhttps://thehackernews.com/2026/04/new-linux-copy-fail-vulnerability.htmlThu, 30 Apr 2026 14:54:00 +0530info@thehackernews.com (The Hacker News)Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Executionhttps://thehackernews.com/2026/04/google-fixes-cvss-10-gemini-cli-ci-rce.htmlhttps://thehackernews.com/2026/04/google-fixes-cvss-10-gemini-cli-ci-rce.htmlThu, 30 Apr 2026 12:37:00 +0530info@thehackernews.com (The Hacker News)SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attackhttps://thehackernews.com/2026/04/sap-npm-packages-compromised-by-mini.htmlhttps://thehackernews.com/2026/04/sap-npm-packages-compromised-by-mini.htmlWed, 29 Apr 2026 21:56:00 +0530info@thehackernews.com (The Hacker News)New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATshttps://thehackernews.com/2026/04/new-wave-of-dprk-attacks-uses-ai.htmlhttps://thehackernews.com/2026/04/new-wave-of-dprk-attacks-uses-ai.htmlWed, 29 Apr 2026 20:13:00 +0530info@thehackernews.com (The Hacker News)