Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.

QR codes are widely used in entry and exit systems for various events to monitor the number of participants and ensure that ...

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to avoid detection.

GlassWorm uses Solana and Google Calendar dead drops to deliver RAT stealing browser data and crypto wallets, impacting ...

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes configs, SSH keys, and automation pipelines before being removed.

A 12th-grade student in Thanh Hoa Province has been accused of developing malicious software and selling it to cybercrime syndicates, enabling them to allegedly hijack over 94,000 computers globally.

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain. The attack typically begins when a victim downloads a business-themed ZIP ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

Here's how I make every Linux terminal feel like home.

Learn how to automate your Git workflow and environment variables into a single, error-proof command that handles the boring ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...