The Hacker News

German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists

Germany’s BSI and BfV warn of state-linked Signal phishing using fake support chats, PIN theft, and device linking to access ...
The Hacker News

Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries

Anthropic’s Claude Opus 4.6 identified 500+ unknown high-severity flaws in open-source projects, advancing AI-driven ...
The Hacker News

CISA Orders Removal of Unsupported Edge Devices to Reduce Federal Network Risk

CISA orders federal agencies to inventory, upgrade, and remove unsupported edge devices within 12–18 months to reduce ...
The Hacker News

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

Key cyber updates on ransomware, cloud intrusions, phishing, botnets, supply-chain risks, and nation-state threat activity.
The Hacker News

AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack

AISURU/Kimwolf launched a record 31.4 Tbps DDoS attack as 2025 saw 47.1M incidents, rising botnet scale, and Android device ...
The Hacker News

China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking, Malware Delivery

China-linked DKnife framework uses router-level AitM implants for traffic hijacking, credential theft, and malware delivery targeting edge devices.
The Hacker News

How Samsung Knox Helps Stop Your Network Security Breach

Discover how Samsung Knox enhances mobile network security with granular controls, Zero Trust principles & seamless ...
The Hacker News

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

The elusive Iranian threat group known as Infy (aka Prince of Persia) has evolved its tactics as part of efforts to hide its ...
The Hacker News

Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities

Asian state-linked hackers breached 70 entities, used phishing, N-day exploits, and rootkits for global espionage.
The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs ...
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
The Hacker News

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

Docker patched a critical Ask Gordon AI flaw enabling code execution and data theft via malicious image metadata in version 4 ...