HackenPost blogs - Page 5 of 89 - HACKENPOST FOR YOU

Data Breaches

Cracked Software and YouTube Videos Spread CountLoader and GachiLoader Malware

Cybersecurity researchers have disclosed details of a new campaign that has used cracked software distribution sites as a…

December 19, 2025

Data Breaches

WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability

WatchGuard has released fixes to address a critical security flaw in Fireware OS that it said has been…

December 19, 2025

Data Breaches

Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks

Authorities in Nigeria have announced the arrest of three “high-profile internet fraud suspects” who are alleged to have…

December 19, 2025

Data Breaches

New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards

Certain motherboard models from vendors like ASRock, ASUSTeK Computer, GIGABYTE, and MSI are affected by a security vulnerability…

December 19, 2025

Data Breaches

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

A previously undocumented China-aligned threat cluster dubbed LongNosedGoblin has been attributed to a series of cyber attacks targeting…

December 18, 2025

Data Breaches

HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution

Hewlett Packard Enterprise (HPE) has resolved a maximum-severity security flaw in OneView Software that, if successfully exploited, could…

December 18, 2025

Data Breaches

ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories

This week’s ThreatsDay Bulletin tracks how attackers keep reshaping old tools and finding new angles in familiar systems.…

December 18, 2025

Data Breaches

Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App

The North Korean threat actor known as Kimsuky has been linked to a new campaign that distributes a…

December 18, 2025

Data Breaches

CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical flaw impacting ASUS Live Update…

December 18, 2025

Data Breaches

Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances

Cisco has alerted users to a maximum-severity zero-day flaw in Cisco AsyncOS software that has been actively exploited…

December 18, 2025

Hand-Picked Top-Read Stories

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

Trending Tags

Cracked Software and YouTube Videos Spread CountLoader and GachiLoader Malware

WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability

Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks

New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution

ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories

Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App

CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation

Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

From Ransomware to Residency: Inside the Rise of the Digital Parasite

Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution

China-Linked UNC3886 Targets Singapore Telecom Sector in Cyber Espionage Campaign

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers