HackenPost blogs - Page 66 of 90

Data Breaches

Chaos RAT Malware Targets Windows and Linux via Fake Network Tool Downloads

Threat hunters are calling attention to a new variant of a remote access trojan (RAT) called Chaos RAT…

June 4, 2025

Data Breaches

Your SaaS Data Isn’t Safe: Why Traditional DLP Solutions Fail in the Browser Era

Traditional data leakage prevention (DLP) tools aren’t keeping pace with the realities of how modern businesses use SaaS…

June 4, 2025

Data Breaches

Malicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain Attacks

Several malicious packages have been uncovered across the npm, Python, and Ruby package repositories that drain funds from…

June 4, 2025

Data Breaches

HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce…

June 4, 2025

Data Breaches

Fake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack

Threat hunters are alerting to a new campaign that employs deceptive websites to trick unsuspecting users into executing…

June 3, 2025

Data Breaches

Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code

Cybersecurity researchers have disclosed details of a critical security flaw in the Roundcube webmail software that has gone…

June 3, 2025

Data Breaches

Scattered Spider: Understanding Help Desk Scams and How to Defend Your Organization

In the wake of high-profile attacks on UK retailers Marks & Spencer and Co-op, Scattered Spider has been…

June 3, 2025

Data Breaches

Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets

A growing number of malicious campaigns have leveraged a recently discovered Android banking trojan called Crocodilus to target…

June 3, 2025

Data Breaches

Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues

Google has revealed that it will no longer trust digital certificates issued by Chunghwa Telecom and Netlock citing…

June 3, 2025

Data Breaches

Cryptojacking Campaign Exploits DevOps APIs Using Off-the-Shelf Tools from GitHub

Cybersecurity researchers have discovered a new cryptojacking campaign that’s targeting publicly accessible DevOps web servers such as those…

June 2, 2025

Hand-Picked Top-Read Stories

Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Trending Tags

Chaos RAT Malware Targets Windows and Linux via Fake Network Tool Downloads

Your SaaS Data Isn’t Safe: Why Traditional DLP Solutions Fail in the Browser Era

Malicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain Attacks

HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Fake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack

Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code

Scattered Spider: Understanding Help Desk Scams and How to Defend Your Organization

Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets

Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues

Cryptojacking Campaign Exploits DevOps APIs Using Off-the-Shelf Tools from GitHub

Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms

Exposed Training Open the Door for Crypto-Mining in Fortune 500 Cloud Environments

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies