News

The Hacker News2h
New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency
Misconfigured Docker API instances have become the target of a new malware campaign that transforms them into a ...
The Hacker News4h
Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets
The ZIP archive ("BitDefender.zip") contains an executable called "StoreInstaller.exe," which includes malware configurations ...
The Hacker News6h
Hackers Use Fake VPN and Browser NSIS Installers to Deliver Winos 4.0 Malware
Cybersecurity researchers have disclosed a malware campaign that uses fake software installers masquerading as popular tools ...
The Hacker News6h
Employees Searching Payroll Portals on Google Tricked Into Sending Paychecks to Hackers
Mobile-focused phishing using SEO poisoning and fake portals hit payroll systems in May 2025, rerouting salaries and evading ...
The Hacker News7h
AI Agents and the Non‑Human Identity Crisis: How to Deploy AI More Securely at Scale
Unlike human beings logging into systems, NHIs rarely have any policies to mandate rotation of credentials, tightly scope ...
The Hacker News8h
Hackers Are Calling Your Office: FBI Alerts Law Firms to Luna Moth's Stealth Phishing Campaign
Luna Moth uses spoofed IT domains and callback phishing to access law firm data, bypassing detection with legitimate tools.
The Hacker News11h
Russia-Linked Hackers Target Tajikistan Government with Weaponized Word Documents
TAG-110 abandoned HTA-based payloads in January 2025, using macro-enabled Word templates to target Tajik institutions.
The Hacker News1d
Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto
VS Code extensions deployed sandbox-evasive malware to steal system data, developer credentials, and crypto wallets.
The Hacker News1d
Hackers Use TikTok Videos to Distribute Vidar and StealC Malware via ClickFix Technique
Latrodectus malware evades detection with ClickFix technique; TikTok and fake Ledger apps expand threat reach.
The Hacker News1d
U.S. Dismantles DanaBot Malware Network, Charges 16 in $50M Global Cybercrime Operation
DoJ disrupts DanaBot malware after 300K infections and $50M damage; 16 charged in Russia-linked cybercrime ring.
The Hacker News1d
Zscaler ThreatLabz 2025 Phishing Report: Phishing Evolves With GenAI
The Zscaler ThreatLabz 2025 Phishing Report dives deep into the rapidly evolving phishing landscape and uncovers the latest ...