[email protected] The Hacker News

APT29 Deploys GRAPELOADER Malware Targeting European Diplomats Through Wine-Tasting Lures

APT29 Deploys GRAPELOADER Malware Targeting European Diplomats Through Wine-Tasting Lures

[email protected] The Hacker News April 20, 2025

The Russian state-sponsored threat actor known as APT29 has been linked to an advanced phishing campaign that’s...

Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems

Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems

[email protected] The Hacker News April 19, 2025

Apr 19, 2025Ravie LakshmananLinux / Malware Cybersecurity researchers have uncovered three malicious packages in the npm registry...

ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware

ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware

[email protected] The Hacker News April 19, 2025

Apr 19, 2025Ravie LakshmananNetwork Security / Vulnerability ASUS has disclosed a critical security flaw impacting routers with...

Chinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 States

Chinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 States

[email protected] The Hacker News April 18, 2025

Cybersecurity researchers are warning of a “widespread and ongoing” SMS phishing campaign that’s been targeting toll road...

Multi-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoader

Multi-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoader

[email protected] The Hacker News April 18, 2025

A new multi-stage attack has been observed delivering malware families like Agent Tesla variants, Remcos RAT, and...

[Webinar] AI Is Already Inside Your SaaS Stack — Learn How to Prevent the Next Silent Breach

[Webinar] AI Is Already Inside Your SaaS Stack — Learn How to Prevent the Next Silent Breach

[email protected] The Hacker News April 18, 2025

Apr 18, 2025The Hacker NewsSaaS Security / Shadow IT Your employees didn’t mean to expose sensitive data....

Experts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoT

Experts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoT

[email protected] The Hacker News April 18, 2025

Apr 18, 2025Ravie LakshmananIoT Security / Malware Cybersecurity researchers are warning of continued risks posed by a...

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download

[email protected] The Hacker News April 18, 2025

Apr 18, 2025Ravie LakshmananWindows Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday...

Mustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL Updates

Mustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL Updates

[email protected] The Hacker News April 17, 2025

The China-linked threat actor known as Mustang Panda has been attributed to a cyber attack targeting an...

State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns

State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns

[email protected] The Hacker News April 17, 2025

Multiple state-sponsored hacking groups from Iran, North Korea, and Russia have been found leveraging the increasingly popular...