HackenPost blogs - Page 41 of 50

Data Breaches

Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

Cybersecurity researchers have disclosed three security flaws in the Rack Ruby web server interface that, if successfully exploited,…

April 25, 2025

Data Breaches

DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks

Cybersecurity researchers are warning about a new malware called DslogdRAT that’s installed following the exploitation of a now-patched…

April 25, 2025

Data Breaches

Lazarus Hits 6 South Korean Firms via Cross EX, Innorix Flaws and ThreatNeedle Malware

At least six organizations in South Korea have been targeted by the prolific North Korea-linked Lazarus Group as…

April 24, 2025

Data Breaches

Linux io_uring PoC Rootkit Bypasses System Call-Based Threat Detection Tools

Cybersecurity researchers have demonstrated a proof-of-concept (PoC) rootkit dubbed Curing that leverages a Linux asynchronous I/O mechanism called…

April 24, 2025

Data Breaches

Automating Zero Trust in Healthcare: From Risk Scoring to Dynamic Policy Enforcement Without Network Redesign

The Evolving Healthcare Cybersecurity Landscape Healthcare organizations face unprecedented cybersecurity challenges in 2025. With operational technology (OT) environments…

April 24, 2025

Data Breaches

159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure

As many as 159 CVE identifiers have been flagged as exploited in the wild in the first quarter…

April 24, 2025

Data Breaches

Darcula Adds GenAI to Phishing Toolkit, Lowering the Barrier for Cybercriminals

The threat actors behind the Darcula phishing-as-a-service (PhaaS) platform have released new updates to their cybercrime suite with…

April 24, 2025

Data Breaches

DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack

Multiple threat activity clusters with ties to North Korea (aka Democratic People’s Republic of Korea or DPRK) have…

April 23, 2025

Data Breaches

Iran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job Campaign

The Iran-nexus threat actor known as UNC2428 has been observed delivering a backdoor known as MURKYTOUR as part…

April 23, 2025

Data Breaches

Android Spyware Disguised as Alpine Quest App Targets Russian Military Devices

Cybersecurity researchers have revealed that Russian military personnel are the target of a new malicious campaign that distributes…

April 23, 2025

Hand-Picked Top-Read Stories

New ‘Curly COMrades’ APT Using NGEN COM Hijacking in Georgia, Moldova Attacks

The Ultimate Battle: Enterprise Browsers vs. Secure Browser Extensions

Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors

Trending Tags

Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks

Lazarus Hits 6 South Korean Firms via Cross EX, Innorix Flaws and ThreatNeedle Malware

Linux io_uring PoC Rootkit Bypasses System Call-Based Threat Detection Tools

Automating Zero Trust in Healthcare: From Risk Scoring to Dynamic Policy Enforcement Without Network Redesign

159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure

Darcula Adds GenAI to Phishing Toolkit, Lowering the Barrier for Cybercriminals

DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack

Iran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job Campaign

Android Spyware Disguised as Alpine Quest App Targets Russian Military Devices

New ‘Curly COMrades’ APT Using NGEN COM Hijacking in Georgia, Moldova Attacks

The Ultimate Battle: Enterprise Browsers vs. Secure Browser Extensions

Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors

New TETRA Radio Encryption Flaws Expose Law Enforcement Communications

Researchers Spot Surge in Erlang/OTP SSH RCE Exploits, 70% Target OT Firewalls

⚡ Weekly Recap: BadCam Attack, WinRAR 0-Day, EDR Killer, NVIDIA Flaws, Ransomware Attacks & More

6 Lessons Learned: Focusing Security Where Business Value Lives