News Room | Hacker News | Page 37 of 130

OpenClaw Advisory Surge Highlights GitHub Vulnerability Tracking Discrepancy

Threats March 10, 2026

The rapid surge in security advisories from the self-hosted AI agent OpenClaw has exposed a significant and growing divide between…

Chinese APT Group Utilizes PlugX to Target Qatar Amidst Middle East Conflict

Threats March 10, 2026

A sophisticated Chinese-linked cyberespionage campaign, attributed to the advanced persistent threat (APT) group Camaro Dragon, has targeted entities in Qatar…

Malware signed with legitimate certificates targets Teams and Zoom users with RMM backdoors.

Threats March 10, 2026

A sophisticated phishing campaign is exploiting the trust ingrained in familiar work applications, disguising malware as legitimate Microsoft Teams, Zoom,…

CISA identifies active exploitation of SolarWinds, Ivanti, and Workspace One vulnerabilities

Vulnerability March 10, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three critical security vulnerabilities to its Known Exploited Vulnerabilities (KEV)…

Researchers Identify GhostClaw as OpenClaw with Data Theft Capabilities

Threats March 10, 2026

A sophisticated malware campaign, known as GhostClaw, is actively targeting software developers by masquerading as a legitimate command-line installer for…

MaaS VIP Keylogger Campaign Employs Steganography, In-Memory Execution for Large-Scale Credential Theft

Threats March 10, 2026

A sophisticated credential-stealing campaign leveraging a stealthy tool known as VIP Keylogger has emerged as a significant threat to organizations…

Iranian cyber actors targeting U.S. critical infrastructure amid increased cyber threat activity

Threats March 9, 2026

Iran-linked hackers, identified as the advanced persistent threat (APT) group Seedworm, have been discovered actively infiltrating the networks of multiple…

BoryptGrab Stealer Exploits Fake GitHub Repositories to Steal Browser and Crypto Wallet Data

Threats March 9, 2026

A sophisticated new malware strain, dubbed BoryptGrab, is actively compromising Windows systems by masquerading as legitimate software within a network…

Cyberattackers exploit counterfeit CleanMyMac website to distribute SHub malware and compromise cryptocurrency holdings.

Threats March 9, 2026

A sophisticated phishing campaign is luring Mac users into downloading a potent malware known as SHub Stealer through a fake…

Critical ExifTool Flaw Allows Code Execution on macOS

Threats March 9, 2026

A significant security vulnerability, tracked as CVE-2026-3102, has been discovered in ExifTool, a widely used open-source tool for reading and…

Vietnam-Based Cybercrime Network Facilitates Large-Scale Fraudulent Account Signups

Threats March 9, 2026

A sophisticated cybercrime network operating out of Vietnam is facilitating the large-scale creation of fraudulent online accounts, posing a significant…

Qualcomm Zero-Day, iOS Exploit Chains, AirSnitch Attack, and Vibe-Coded Malware Featured in Weekly Cybersecurity Recap

Vulnerability March 9, 2026

The cybersecurity landscape remains a dynamic battleground, as evidenced by a busy week marked by significant threat actor activity and…

Trending

CISA adds actively exploited SolarWinds Serv-U DoS vulnerability to KEV catalog

AI Agent Discovers 21 Zero-Day Vulnerabilities in FFmpeg; Chrome Addresses 429 Bugs

Cisco Catalyst SD-WAN Manager Vulnerability Exploited, Patch Pending

Author: News Room

OpenClaw Advisory Surge Highlights GitHub Vulnerability Tracking Discrepancy

Chinese APT Group Utilizes PlugX to Target Qatar Amidst Middle East Conflict

Malware signed with legitimate certificates targets Teams and Zoom users with RMM backdoors.

CISA identifies active exploitation of SolarWinds, Ivanti, and Workspace One vulnerabilities

Researchers Identify GhostClaw as OpenClaw with Data Theft Capabilities

MaaS VIP Keylogger Campaign Employs Steganography, In-Memory Execution for Large-Scale Credential Theft

Iranian cyber actors targeting U.S. critical infrastructure amid increased cyber threat activity

BoryptGrab Stealer Exploits Fake GitHub Repositories to Steal Browser and Crypto Wallet Data

Cyberattackers exploit counterfeit CleanMyMac website to distribute SHub malware and compromise cryptocurrency holdings.

Critical ExifTool Flaw Allows Code Execution on macOS

Vietnam-Based Cybercrime Network Facilitates Large-Scale Fraudulent Account Signups

Qualcomm Zero-Day, iOS Exploit Chains, AirSnitch Attack, and Vibe-Coded Malware Featured in Weekly Cybersecurity Recap