News Room | Hacker News | Page 28 of 130

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

Data Breach March 25, 2026

A Russian national has been sentenced to two years in prison and fined $100,000 by the U.S. Department of Justice…

AI Agent Becomes Threat, Rendering Kill Chain Obsolete

Vulnerability March 25, 2026

In a significant development for cybersecurity, Anthropic revealed in September 2025 that a state-sponsored threat actor successfully conducted an autonomous…

Malicious npm Packages Target Crypto Developers, Steal Wallet Keys

Threats March 25, 2026

A critical supply chain attack has been uncovered targeting cryptocurrency developers, with five malicious npm packages designed to exfiltrate sensitive…

Google Authenticator’s Passkey Architecture May Present New Passwordless Attack Vectors

Threats March 25, 2026

Passwordless authentication, championed as the ultimate defense against account takeovers, faces new uncertainties due to the hidden architecture of Google…

Threat actors target MS-SQL servers with ICE Cloud Scanner

Threats March 24, 2026

A persistent threat actor, identified as Larva-26002, has been continuously targeting poorly managed Microsoft SQL (MS-SQL) servers, now deploying a…

CanisterWorm malware targets Iran, deployed by TeamPCP

Threats March 24, 2026

A sophisticated cyber threat actor, identified as TeamPCP, has escalated its operations from stealthy credential theft to outright destructive attacks…

Tycoon2FA Operators Resume Cloud Account Phishing After Infrastructure Disruption

Threats March 24, 2026

Cybercriminals behind Tycoon2FA, a sophisticated phishing-as-a-service (PhaaS) platform, have rapidly resumed their attacks on cloud accounts, demonstrating remarkable resilience following…

Google Forms used in multi-stage malware campaign distributing PureHVNC.

Threats March 24, 2026

Cybercriminals have devised a new method to distribute malware, ingeniously weaponizing a widely trusted online tool: Google Forms. A recently…

Advanced Persistent Threat Actors Exploit RDP Servers for Payload Deployment and Persistence

Threats March 24, 2026

One of the world’s most dangerous state-backed hacking groups is actively targeting Remote Desktop Protocol (RDP) servers across critical infrastructure,…

Microsoft details new security measures for generative AI models on Azure AI Foundry

Threats March 24, 2026

The accelerating adoption of generative AI technologies has amplified concerns regarding software supply chain security. In response, Microsoft has detailed…

TeamPCP Compromises Checkmarx GitHub Actions with Stolen CI Credentials

Vulnerability March 24, 2026

Two more GitHub Actions workflows, maintained by supply chain security firm Checkmarx, have been compromised by credential-stealing malware attributed to…

New Data Leak Site Identified with Ties to Active Initial Access Broker

Threats March 24, 2026

The cybercriminal underground has seen a significant development with the emergence of a new Tor-based leak site, “ALP-001,” appearing on…

Trending

CISA adds actively exploited SolarWinds Serv-U DoS vulnerability to KEV catalog

AI Agent Discovers 21 Zero-Day Vulnerabilities in FFmpeg; Chrome Addresses 429 Bugs

Cisco Catalyst SD-WAN Manager Vulnerability Exploited, Patch Pending

Author: News Room

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

AI Agent Becomes Threat, Rendering Kill Chain Obsolete

Malicious npm Packages Target Crypto Developers, Steal Wallet Keys

Google Authenticator’s Passkey Architecture May Present New Passwordless Attack Vectors

Threat actors target MS-SQL servers with ICE Cloud Scanner

CanisterWorm malware targets Iran, deployed by TeamPCP

Tycoon2FA Operators Resume Cloud Account Phishing After Infrastructure Disruption

Google Forms used in multi-stage malware campaign distributing PureHVNC.

Advanced Persistent Threat Actors Exploit RDP Servers for Payload Deployment and Persistence

Microsoft details new security measures for generative AI models on Azure AI Foundry

TeamPCP Compromises Checkmarx GitHub Actions with Stolen CI Credentials

New Data Leak Site Identified with Ties to Active Initial Access Broker