The Hacker News

How Exposed Endpoints Increase Risk Across LLM Infrastructure

February 25, 2026 add comment
As more organizations run their own Large Language Models (LLMs), they are also deploying more internal services and Application Programming Interfaces (APIs) to support those models. Modern security risks... Read more »

⚡ Weekly Recap: Double-Tap Skimmers, PromptSpy AI, 30Tbps DDoS, Docker Malware & More

February 24, 2026 add comment
Security news rarely moves in a straight line. This week, it feels more like a series of sharp turns, some happening quietly in the background, others playing out in... Read more »

Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations

February 23, 2026 add comment
Several state-sponsored actors, hacktivist entities, and criminal groups from China, Iran, North Korea, and Russia have trained their sights on the defense industrial base (DIB) sector, according to findings... Read more »

Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster

February 17, 2026 add comment
Cloud attacks move fast — faster than most incident response teams. In data centers, investigations had time. Teams could collect disk images, review logs, and build timelines over days.... Read more »

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

February 17, 2026 add comment
Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting users into running commands that carry out a Domain... Read more »

AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack

February 17, 2026 add comment
The distributed denial-of-service (DDoS) botnet known as AISURU/Kimwolf has been attributed to a record-setting attack that peaked at 31.4 Terabits per second (Tbps) and lasted only 35 seconds. Cloudflare,... Read more »

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

February 16, 2026 add comment
Microsoft on Tuesday released security updates to address a set of 59 flaws across its software, including six vulnerabilities that it said have been exploited in the wild. Of... Read more »

Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server

February 15, 2026 add comment
SmarterTools confirmed last week that the Warlock (aka Storm-2603) ransomware gang breached its network by exploiting an unpatched SmarterMail instance. The incident took place on January 29, 2026, when... Read more »

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

February 13, 2026 add comment
Threat hunters have disclosed details of a new, stealthy malware campaign dubbed DEAD#VAX that employs a mix of “disciplined tradecraft and clever abuse of legitimate system features” to bypass... Read more »

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

February 11, 2026 add comment
Microsoft has revealed that it observed a multi‑stage intrusion that involved the threat actors exploiting internet‑exposed SolarWinds Web Help Desk (WHD) instances to obtain initial access and move laterally... Read more »
Subscribe to our Newsletter