The Hacker News1h
CoffeeLoader Uses GPU-Based Armoury Packer to Evade EDR and Antivirus Detection
Central to the malware is a packer dubbed Armoury that executes code on a system's GPU to complicate analysis in virtual ...
The Hacker News3h
Product Walkthrough: How Datto BCDR Delivers Unstoppable Business Continuity
This article discusses how IT pros and businesses can guarantee operational continuity and business resilience with Datto ...
The Hacker News7h
Nine-Year-Old npm Packages Hijacked to Exfiltrate API Keys via Obfuscated Scripts
Twelve npm packages hijacked via compromised maintainer accounts to exfiltrate secrets using obfuscated scripts.
The Hacker News5h
PJobRAT Malware Campaign Targeted Taiwanese Users via Fake Chat Apps
PJobRAT malware targeted Taiwanese Android users via fake chat apps from Jan 2023 to Oct 2024, enabling deep surveillance and ...
The Hacker News7h
Mozilla Patches Critical Firefox Bug Similar to Chrome's Recent Zero-Day Vulnerability
Mozilla has released updates to address a critical security flaw impacting its Firefox browser for Windows, merely days after ...
The Hacker News8h
New Morphing Meerkat Phishing Kit Mimics 114 Brands Using Victims' DNS Email Records
DNS intelligence firm Infoblox is tracking the actor behind the PhaaS, the phishing kit, and the related activity under the ...
The Hacker News23h
Hackers Repurpose RansomHub's EDRKillShifter in Medusa, BianLian, and Play Attacks
RansomHub's EDRKillShifter used in 2024 ransomware by Medusa, BianLian, and Play, revealing cross-gang tool sharing.
The Hacker News23h
New Security Flaws Found in VMware Tools and CrushFTP — High Risk, No Workaround
VMware Tools flaw CVE-2025-22230 enables high-privilege actions on Windows VMs + No workaround + Patch in 12.5.1.
The Hacker News1d
APT36 Spoofs India Post Website to Infect Windows and Android Users with Malware
The fraudulent website mimicking India Post is named "postindia [.]site." Users who land on the site from Windows systems are ...
The Hacker News1d
150,000 Sites Compromised by JavaScript Injection Promoting Chinese Gambling Platforms
An ongoing campaign that infiltrates legitimate websites with malicious JavaScript injects to promote Chinese-language ...
The Hacker News1d
CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices
CISA adds Sitecore flaws CVE-2019-9874 and CVE-2019-9875 to KEV amid active exploitation and agency patch mandates.
The Hacker News1d
EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware
EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware | Read more hacking news on The Hacker News ...