π΄ The Hacker News
Jul 14, 2026
Attackers whose methods line up with the data-extortion group ShinyHunters have spent the past year walking into corporate Salesforce environments without exploiting a single flaw in the...
π BleepingComputer
Jul 13, 2026
Japan's largest taxi operator, Nihon Kotsu, announced that its systems were compromised in a cyberattack, forcing the company to shut down part of its infrastructure....
π BleepingComputer
Jul 13, 2026
The Jscrambler client-side web security company disclosed that a threat actor published a malicious version of its npm package that has been downloaded almost 1,500...
π BleepingComputer
Jul 13, 2026
A new macOS information-stealing malware called CrashStealer pretends to be Apple's crash-reporting tool to steal credentials, keychain data, and crypto wallets. [...]
π΄ The Hacker News
Jul 13, 2026
Cybersecurity researchers have flagged a new macOS information stealer called CrashStealer that's capable of harvesting sensitive data from compromised systems. Unlike other information stealers that...
π΄ The Hacker News
Jul 13, 2026
Google and Microsoft have pulled ModHeader, a popular header-editing extension with roughly 1.6 million installs across Chrome and Edge, after researchers found a hidden browsing-history...
π BleepingComputer
Jul 13, 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that attackers are exploiting vulnerabilities in the iCagenda and Balbooa Forms extensions for Joomla to...
π΄ The Hacker News
Jul 13, 2026
Somewhere right now, a security tool is quietly finding bugs faster than any human can fix them. That's supposed to be the good news. The...
π’ Krebs on Security
Jul 13, 2026
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a postmortem on a data leak in which a contractor published dozens of internal CISA credentials...
π BleepingComputer
Jul 13, 2026
German discount supermarket chain Lidl notified customers in Germany, Belgium, and the Netherlands that attackers stole their personal information in a breach at a service...
π BleepingComputer
Jul 13, 2026
Learn how attackers abuse Entra ID through a free hands-on Capture the Flag. Varonis created the Breach at the Beach CTF to teach defenders how...
π΄ The Hacker News
Jul 13, 2026
Give an AI assistant a memory and access to your inbox, and you hand an attacker a way to rewrite what it thinks it knows...
π BleepingComputer
Jul 13, 2026
UK authorities charged five people following a National Crime Agency (NCA) investigation into Russian Coms, a major caller ID spoofing platform used by criminals to...
π΄ The Hacker News
Jul 13, 2026
A new phishing-as-a-service (PhaaS) operation called Forg365 is using a combination of device code phishing, adversary-in-the-middle (AitM) tactics, antibot evasion, artificial intelligence (AI)-assisted lure creation,...
π΄ The Hacker News
Jul 13, 2026
Meta has filed a patent application for an AI that listens to your voice throughout the day, works out how it thinks you are feeling...
π΄ The Hacker News
Jul 13, 2026
A few days ago, I was sitting with the CISO of a Fortune 50 company, walking through how his security team was thinking about AI...
π BleepingComputer
Jul 13, 2026
The European Union and the United Kingdom jointly sanctioned dozens of Russian individuals and entities and accused Russia of coordinating a network of hacking groups...
π’ Krebs on Security
Jul 8, 2026
A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and...
π’ Krebs on Security
Jul 2, 2026
The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy...
π’ Krebs on Security
Jun 23, 2026
Two men pleaded guilty in the United Kingdom this week to criminal charges stemming from an August 2024 cyberattack that crippled Transport for London, the...
π’ Krebs on Security
Jun 18, 2026
For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising...
π’ Krebs on Security
Jun 10, 2026
A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of...
π’ Krebs on Security
Jun 9, 2026
Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for...
π’ Krebs on Security
Jun 1, 2026
The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and...
This story relates to ongoing threat activity in the The Hacker News sector. For in-depth analysis on similar attack vectors and defensive strategies, read our original research on the Hacker Shreyansh blog.