News

The Hacker News2h
Gold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to Targets
Gold Melody uses ASP.NET vulnerabilities for long-term access, impacting various industries across Europe and the U.S.
The Hacker News6h
U.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker Scheme
The IT worker scheme, also tracked as Nickel Tapestry, Wagemole, and UNC5267, involves North Korean actors using a mix of ...
The Hacker News12h
Microsoft Patches 130 Vulnerabilities, Including Critical Flaws in SPNEGO and SQL Server
"Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a ...
The Hacker News16h
Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware
Hackers are exploiting Shellter’s leaked Elite license to distribute Lumma Stealer, SectopRAT, and more. This affects ...
The Hacker News13h
Automation ≠ Autopilot: Rethinking AI in Corporate Security and Compliance
AI accelerates security but needs human oversight to prevent risks like misconfigurations and compliance errors. Ensure AI ...
The Hacker News12h
Malicious Pull Request Targets 6,000+ Developers via Vulnerable Ethcode VS Code Extension
First released by 7finney in 2022, Ethcode is a VS Code extension that's used to deploy and execute solidity smart contracts in Ethereum Virtual Machine ( EVM )-based blockchains. An EVM is a ...
The Hacker News8h
Chinese Hacker Xu Zewei Arrested for Ties to Silk Typhoon Group and U.S. Cyber Attacks
Chinese national Xu Zewei arrested in Milan for links to Silk Typhoon and cyber attacks on U.S. agencies, including Microsoft Exchange breaches ...
The Hacker News8h
How To Automate Ticket Creation, Device Identification and Threat Triage With Tines
Automate malware alert workflows with Tines, using CrowdStrike and Slack to streamline threat triage and improve response ...