HackenPost blogs - Page 23 of 112

Data Breaches

The CTEM Divide: Why 84% of Security Programs Are Falling Behind

A new 2026 market intelligence study of 128 enterprise security decision-makers (available here) reveals a stark divide forming…

February 12, 2026

Data Breaches

83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure

A significant chunk of the exploitation attempts targeting a newly disclosed security flaw in Ivanti Endpoint Manager Mobile…

February 12, 2026

Data Breaches

Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices

Apple on Wednesday released iOS, iPadOS, macOS Tahoe, tvOS, watchOS, and visionOS updates to address a zero-day flaw…

February 12, 2026

Data Breaches

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials

Cybersecurity researchers have discovered what they said is the first known malicious Microsoft Outlook add-in detected in the…

February 11, 2026

Data Breaches

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise Windows…

February 11, 2026

Data Breaches

Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms

It’s Patch Tuesday, which means a number of software vendors have released patches for various security vulnerabilities impacting…

February 11, 2026

Data Breaches

Exposed Training Open the Door for Crypto-Mining in Fortune 500 Cloud Environments

Intentionally vulnerable training applications are widely used for security education, internal testing, and product demonstrations. Tools such as…

February 11, 2026

Data Breaches

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

The North Korea-linked threat actor known as UNC1069 has been observed targeting the cryptocurrency sector to steal sensitive…

February 11, 2026

Data Breaches

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

The information technology (IT) workers associated with the Democratic People’s Republic of Korea (DPRK) are now applying to…

February 10, 2026

Data Breaches

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

Cybersecurity researchers have disclosed details of an emergent ransomware family dubbed Reynolds that comes embedded with a built-in…

February 10, 2026

Hand-Picked Top-Read Stories

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Trending Tags

The CTEM Divide: Why 84% of Security Programs Are Falling Behind

83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure

Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms

Exposed Training Open the Door for Crypto-Mining in Fortune 500 Cloud Environments

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

The Alert Firehose Finally Meets Its Match

Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks