The Hacker News

Google: Over 57 Nation-State Threat Groups Using AI for Cyber Operations

February 1, 2025 add comment
Over 57 distinct threat actors with ties to China, Iran, North Korea, and Russia have been observed using artificial intelligence (AI) technology powered by Google to further enable their... Read more »

Do We Really Need The OWASP NHI Top 10?

January 28, 2025 add comment
The Open Web Application Security Project has recently introduced a new Top 10 project – the Non-Human Identity (NHI) Top 10. For years, OWASP has provided security professionals and... Read more »

Meta’s Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks

January 28, 2025 add comment
A high-severity security flaw has been disclosed in Meta’s Llama large language model (LLM) framework that, if successfully exploited, could allow an attacker to execute arbitrary code on the... Read more »

Cloud Atlas Deploys VBCloud Malware: Over 80% of Targets Found in Russia

January 3, 2025 add comment
The threat actor known as Cloud Atlas has been observed using a previously undocumented malware called VBCloud as part of its cyber attack campaigns targeting “several dozen users” in... Read more »

Dutch DPA Fines Netflix €4.75 Million for GDPR Violations Over Data Transparency

January 3, 2025 add comment
The Dutch Data Protection Authority (DPA) on Wednesday fined video on-demand streaming service Netflix €4.75 million ($4.93 million) for not giving consumers enough information about how it used their... Read more »

The Mask APT Resurfaces with Sophisticated Multi-Platform Malware Arsenal

December 18, 2024 add comment
A little-known cyber espionage actor known as The Mask has been linked to a new set of attacks targeting an unnamed organization in Latin America twice in 2019 and... Read more »

Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities

December 15, 2024 add comment
Ivanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) and Connect Secure products that could lead to privilege escalation and code execution.... Read more »

New Golang-Based Zergeca Botnet Capable of Powerful DDoS Attacks

July 6, 2024 add comment
Cybersecurity researchers have uncovered a new botnet called Zergeca that’s capable of conducting distributed denial-of-service (DDoS) attacks. Written in Golang, the botnet is so named for its reference to... Read more »

Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware

June 29, 2024 add comment
Threat actors with suspected ties to China and North Korea have been linked to ransomware and data encryption attacks targeting government and critical infrastructure sectors across the world between... Read more »

CISA Warns of Actively Exploited Apache Flink Security Vulnerability

May 30, 2024 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a security flaw impacting Apache Flink, an open-source, unified stream-processing and batch-processing framework, to the Known Exploited Vulnerabilities (KEV) catalog, citing... Read more »
Subscribe to our Newsletter