HackenPost blogs - Page 72 of 123

Data Breaches

Malicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain Attacks

Cybersecurity researchers have discovered a malicious package in the Python Package Index (PyPI) repository that introduces malicious behavior…

August 18, 2025

Data Breaches

Wazuh for Regulatory Compliance

Organizations handling various forms of sensitive data or personally identifiable information (PII) require adherence to regulatory compliance standards…

August 18, 2025

Data Breaches

ERMAC V3.0 Banking Trojan Source Code Leak Exposes Full Malware Infrastructure

Cybersecurity researchers have detailed the inner workings of an Android banking trojan called ERMAC 3.0, uncovering serious shortcomings…

August 16, 2025

Data Breaches

Russian Group EncryptHub Exploits MSC EvilTwin Vulnerability to Deploy Fickle Stealer Malware

The threat actor known as EncryptHub is continuing to exploit a now-patched security flaw impacting Microsoft Windows to…

August 16, 2025

Data Breaches

Taiwan Web Servers Breached by UAT-7237 Using Customized Open-Source Hacking Tools

A Chinese-speaking advanced persistent threat (APT) actor has been observed targeting web infrastructure entities in Taiwan using customized…

August 15, 2025

Data Breaches

U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) on Thursday renewed sanctions against Russian…

August 15, 2025

Data Breaches

Zero Trust + AI: Privacy in the Age of Agentic AI

We used to think of privacy as a perimeter problem: about walls and locks, permissions, and policies. But…

August 15, 2025

Data Breaches

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution

Cisco has released security updates to address a maximum-severity security flaw in Secure Firewall Management Center (FMC) Software…

August 15, 2025

Data Breaches

New HTTP/2 ‘MadeYouReset’ Vulnerability Enables Large-Scale DoS Attacks

Multiple HTTP/2 implementations have been found susceptible to a new attack technique called MadeYouReset that could be explored…

August 14, 2025

Data Breaches

Hackers Found Using CrossC2 to Expand Cobalt Strike Beacon’s Reach to Linux and macOS

Japan’s CERT coordination center (JPCERT/CC) on Thursday revealed it observed incidents that involved the use of a command-and-control…

August 14, 2025

Hand-Picked Top-Read Stories

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws

Trending Tags

Malicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain Attacks

Wazuh for Regulatory Compliance

ERMAC V3.0 Banking Trojan Source Code Leak Exposes Full Malware Infrastructure

Russian Group EncryptHub Exploits MSC EvilTwin Vulnerability to Deploy Fickle Stealer Malware

Taiwan Web Servers Breached by UAT-7237 Using Customized Open-Source Hacking Tools

U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions

Zero Trust + AI: Privacy in the Age of Agentic AI

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution

New HTTP/2 ‘MadeYouReset’ Vulnerability Enables Large-Scale DoS Attacks

Hackers Found Using CrossC2 to Expand Cobalt Strike Beacon’s Reach to Linux and macOS

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws

ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack

Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network