The Hacker News5h
GitHub, Telegram Bots, and QR Codes Abused in New Wave of Phishing Attacks
Cybercriminals exploit trusted GitHub repositories to deliver Remcos RAT in a phishing campaign targeting the finance sector.
The Hacker News16h
Bohemia and Cannabia Dark Web Markets Taken Down After Joint Police Operation
Dutch police shut down Bohemia, the largest dark web market, after a global investigation, arresting key suspects.
The Hacker News15h
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution
GitLab fixes eight security flaws, including a critical CI/CD pipeline vulnerability CVE-2024-9164. Update now!
The Hacker News13h
CISA Warns of Threat Actors Exploiting F5 BIG-IP Cookies for Network Reconnaissance
CISA warns of unencrypted F5 BIG-IP cookies enabling network reconnaissance and highlights Russian APT29 cyber threats.
The Hacker News1d
CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches
CISA flags a critical Fortinet flaw under active exploitation. Palo Alto Networks and Cisco also release urgent security ...
The Hacker News1d
Firefox Zero-Day Under Attack: Update Your Browser Immediately
Mozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come ...
The Hacker News1d
OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation
OpenAI disrupts 20 malicious operations exploiting AI for cybercrime, including malware debugging, social media manipulation, ...
The Hacker News1d
Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems
"A vulnerability in the Nortek Linear eMerge E3 allows remote unauthenticated attackers to cause the device to execute ...
The Hacker News1d
Cybercriminals Use Unicode to Hide Mongolian Skimmer in E-Commerce Platforms
New Mongolian Skimmer uses Unicode obfuscation to steal financial data from e-commerce sites, evading detection.
The Hacker News2d
Microsoft Detects Growing Use of File Hosting Services in Business Email Compromise Attacks
Microsoft warns of cyber attacks abusing SharePoint, OneDrive, and Dropbox to evade security and steal credentials.
The Hacker News2d
N. Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware
North Korean hackers target tech job seekers with malware in a fake job interview scam, stealing credentials and crypto ...
The Hacker News2d
Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild
Microsoft's October 2024 Patch Tuesday addresses 118 vulnerabilities, two under active exploitation. Apply fixes now.