The Hacker News

Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

March 9, 2026 add comment
Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering campaign that has leveraged the Windows Terminal app as a way to activate a sophisticated attack chain... Read more »

Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor Backdoor

March 9, 2026 add comment
New research from Broadcom’s Symantec and Carbon Black Threat Hunter Team has discovered evidence of an Iranian hacking group embedding itself in several U.S. companies’ networks, including banks, airports,... Read more »

The MSP Guide to Using AI-Powered Risk Management to Scale Cybersecurity

March 9, 2026 add comment
Scaling cybersecurity services as an MSP or MSSP requires technical expertise and a business model that delivers measurable value at scale. Risk-based cybersecurity is the foundation of that model.... Read more »

Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India

March 9, 2026 add comment
The Pakistan-aligned threat actor known as Transparent Tribe has become the latest hacking group to embrace artificial intelligence (AI)-powered coding tools to strike targets with various implants. The activity... Read more »

Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model

March 9, 2026 add comment
Anthropic on Friday said it discovered 22 new security vulnerabilities in the Firefox web browser as part of a security partnership with Mozilla. Of these, 14 have been classified... Read more »

OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues

March 9, 2026 add comment
OpenAI on Friday began rolling out Codex Security, an artificial intelligence (AI)-powered security agent that’s designed to find, validate, and propose fixes for vulnerabilities. The feature is available in... Read more »

Starkiller Phishing Suite Uses AitM Reverse Proxy to Bypass Multi-Factor Authentication

March 9, 2026 add comment
Cybersecurity researchers have disclosed details of a new phishing suite called Starkiller that proxies legitimate login pages to bypass multi-factor authentication (MFA) protections. It’s advertised as a cybercrime platform... Read more »

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

March 8, 2026 add comment
Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilities that act as a conduit for a cross-platform remote access trojan (RAT) that’s functional on Windows, macOS,... Read more »

149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict

March 8, 2026 add comment
Cybersecurity researchers have warned of a surge in retaliatory hacktivist activity following the U.S.-Israel coordinated military campaign against Iran, codenamed Epic Fury and Roaring Lion. “The hacktivist threat in... Read more »

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

March 7, 2026 add comment
Cybersecurity researchers have disclosed details of a multi-stage malware campaign that uses batch scripts as a pathway to deliver various encrypted remote access trojan (RATs) payloads that correspond to... Read more »
Subscribe to our Newsletter