HackenPost blogs - Page 80 of 88

Data Breaches

Docker Malware Exploits Teneo Web3 Node to Earn Crypto via Fake Heartbeat Signals

Cybersecurity researchers have detailed a malware campaign that’s targeting Docker environments with a previously undocumented technique to mine…

April 22, 2025

Data Breaches

GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages

Cybersecurity researchers have detailed a now-patched vulnerability in Google Cloud Platform (GCP) that could have enabled an attacker…

April 22, 2025

Data Breaches

5 Major Concerns With Employees Using The Browser

As SaaS and cloud-native work reshape the enterprise, the web browser has emerged as the new endpoint. However,…

April 22, 2025

Data Breaches

Phishers Exploit Google Sites and DKIM Replay to Send Signed Emails, Steal Credentials

In what has been described as an “extremely sophisticated phishing attack,” threat actors have leveraged an uncommon approach…

April 22, 2025

Data Breaches

Microsoft Secures MSA Signing with Azure Confidential VMs Following Storm-0558 Breach

Microsoft on Monday announced that it has moved the Microsoft Account (MSA) signing service to Azure confidential virtual…

April 22, 2025

Data Breaches

Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan

Cybersecurity researchers have flagged a new malicious campaign related to the North Korean state-sponsored threat actor known as…

April 21, 2025

Data Breaches

SuperCard X Android Malware Enables Contactless ATM and PoS Fraud via NFC Relay Attacks

A new Android malware-as-a-service (MaaS) platform named SuperCard X can facilitate near-field communication (NFC) relay attacks, enabling cybercriminals…

April 21, 2025

Data Breaches

5 Reasons Device Management Isn’t Device Trust

The problem is simple: all breaches start with initial access, and initial access comes down to two primary…

April 21, 2025

Data Breaches

⚡ THN Weekly Recap: iOS Zero-Days, 4Chan Breach, NTLM Exploits, WhatsApp Spyware & More

Can a harmless click really lead to a full-blown cyberattack? Surprisingly, yes — and that’s exactly what we…

April 21, 2025

Data Breaches

Hackers Abuse Russian Bulletproof Host Proton66 for Global Attacks and Malware Delivery

Cybersecurity researchers have disclosed a surge in “mass scanning, credential brute-forcing, and exploitation attempts” originating from IP addresses…

April 21, 2025

Hand-Picked Top-Read Stories

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code

China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware

Trending Tags

Docker Malware Exploits Teneo Web3 Node to Earn Crypto via Fake Heartbeat Signals

GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages

5 Major Concerns With Employees Using The Browser

Phishers Exploit Google Sites and DKIM Replay to Send Signed Emails, Steal Credentials

Microsoft Secures MSA Signing with Azure Confidential VMs Following Storm-0558 Breach

Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan

SuperCard X Android Malware Enables Contactless ATM and PoS Fraud via NFC Relay Attacks

5 Reasons Device Management Isn’t Device Trust

⚡ THN Weekly Recap: iOS Zero-Days, 4Chan Breach, NTLM Exploits, WhatsApp Spyware & More

Hackers Abuse Russian Bulletproof Host Proton66 for Global Attacks and Malware Delivery

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code

China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories

LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability