The Hacker News12h
Chinese Hackers Breach Juniper Networks Routers With Custom Backdoors and Rootkits
UNC3886 exploits Juniper routers with six TinyShell-based backdoors, evading detection and maintaining persistence.
The Hacker News15h
Over 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber Attack
GreyNoise reports 400+ IPs exploiting multiple SSRF vulnerabilities, targeting cloud services and global networks. Patch now.
The Hacker News17h
URGENT: Microsoft Patches 57 Security Flaws, Including 6 Actively Exploited Zero-Days
Microsoft fixes 57 security flaws, including six zero-days exploited in the wild. CISA mandates patches by April 1.
The Hacker News17h
Pentesters: Is AI Coming for Your Role?
AI is reshaping pentesting by automating tasks, enhancing efficiency, and empowering testers—without replacing them ...
The Hacker News23h
Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials
Hackers use polymorphic browser extensions to mimic real add-ons, steal credentials, and hijack accounts. Affects Chrome, ...
The Hacker News23h
Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks
Apple patches WebKit zero-day CVE-2025-24201, exploited in sophisticated attacks before iOS 17.2. Update secures iOS, macOS, ...
The Hacker News1d
CISA Adds Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM to KEV List
CISA Adds Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM to KEV List | Read more hacking news ...
The Hacker News2d
CTM360 Uncovers a Large-Scale Fake Play Store Scam Targeting Global Users: PlayPraetor Trojan
CTM360 detects 6,000+ fake Google Play pages spreading PlayPraetor malware, stealing banking credentials and MFA codes for ...
The Hacker News1d
Your Risk Scores Are Lying: Adversarial Exposure Validation Exposes Real Threats
Compliance isn’t security. Adversarial Exposure Validation reveals exploitable vulnerabilities, helping teams cut through the ...
The Hacker News1d
Ballista Botnet Exploits Unpatched TP-Link Vulnerability, Infects Over 6,000 Devices
Ballista botnet exploits TP-Link router flaw CVE-2023-1389, infecting 6,000+ devices worldwide and evolving to use TOR.
The Hacker News2d
âš¡ THN Weekly Recap: New Attacks, Old Tricks, Bigger Impact
State-sponsored hacking, IoT botnets, ransomware shifts—this week's cyber roundup covers it all. Stay informed, stay secure.
The Hacker News1d
Steganography Explained: How XWorm Hides Inside Images
Cybercriminals use steganography to hide malware inside images, evading security tools and enabling stealthy attacks. Learn ...