Author Archives: The Hacker News

Over the past several weeks, the cybersecurity community has been reminded how quickly frontier and agentic AI in defense networks can challenge our assumptions. When Anthropic’s Claude Mythos model was made available to a limited set of organizations … Continue reading Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It→

It got stupid again.

The internet still feels held together with tape. Bad plugins, old bugs, fake tools, trusted apps doing shady things. Same mess, new wrapper. And now the weird stuff is normal. Forums go down and come back worse. Cheap hackers get… Continue reading ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories→

A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the U.K., Germany, Italy, and South Africa.

These efforts have been complemented by a “rapid operational tempo” and a continually … Continue reading China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa→

Cybersecurity researchers have shed light on a macOS malvertising campaign codenamed Operation FlutterBridge that spreads a new backdoor called FlutterShell.

According to Palo Alto Networks Unit 42, the campaign is said to be the next stage of a previ… Continue reading FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads→

Cybersecurity researchers have flagged a large-scale operation that impersonates open-source and freeware projects to funnel unsuspecting users through a Traffic Distribution System (TDS) and deliver malware families like Remus Stealer, AnimateClipper,… Continue reading Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS→

Unknown attackers spent at least five months inside the Outlook mailbox of a senior executive at a major global stock exchange, copying the inbox out in small, repeated batches and routing it through Dropbox and OneDrive so the traffic blended into nor… Continue reading Hackers Spied on a Stock Exchange Executive’s Outlook Mailbox for Five Months→

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical flaw impacting Mirasvit Cache Warmer, a popular Magento full-page cache extension, to its Known Exploited Vulnerabilities (KEV) catalog, following reports of… Continue reading CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog→

The U.S. Department of Justice (DoJ) on Wednesday announced the results of a sweeping action undertaken by government authorities and private sector companies to combat cyber-enabled and cryptocurrency fraud targeting Americans.

The “Disruption Week” … Continue reading DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets→

A single poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could have hijacked Google Gemini’s voice assistant on Android and made it open a victim’s connected windows, fake a message from their boss, push the phone into … Continue reading WhatsApp, Slack Notifications Could Hijack Google Gemini on Android→

Cybersecurity researchers have flagged a new malspam campaign that makes use of Google’s DoubleClick domain as a way to evade detection and ultimately deliver a remote access trojan (RAT) named DesckVB RAT.

“Before the victim ever reaches attacker-con… Continue reading Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT→