HackenPost blogs - Page 84 of 124

Data Breaches

Hard-Coded Credentials Found in HPE Instant On Devices Allow Admin Access

Hewlett-Packard Enterprise (HPE) has released security updates to address a critical security flaw affecting Instant On Access Points…

July 21, 2025

Data Breaches

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers

A critical security vulnerability in Microsoft SharePoint Server has been weaponized as part of an “active, large-scale” exploitation…

July 20, 2025

Data Breaches

Malware Injected into 5 npm Packages After Maintainer Tokens Stolen in Phishing Attack

Cybersecurity researchers have alerted to a supply chain attack that has targeted popular npm packages via a phishing…

July 20, 2025

Data Breaches

Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers

A newly disclosed critical security flaw in CrushFTP has come under active exploitation in the wild. Assigned the…

July 20, 2025

Data Breaches

China’s Massistant Tool Secretly Extracts SMS, GPS Data, and Images From Confiscated Phones

Cybersecurity researchers have shed light on a mobile forensics tool called Massistant that’s used by law enforcement authorities…

July 18, 2025

Data Breaches

UNG0002 Group Hits China, Hong Kong, Pakistan Using LNK Files and RATs in Twin Campaigns

Multiple sectors in China, Hong Kong, and Pakistan have become the target of a threat activity cluster tracked…

July 18, 2025

Data Breaches

Ivanti Zero-Days Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike Attacks

Cybersecurity researchers have disclosed details of a new malware called MDifyLoader that has been observed in conjunction with…

July 18, 2025

Data Breaches

CERT-UA Discovers LAMEHUG Malware Linked to APT28, Using LLM for Phishing Campaign

The Computer Emergency Response Team of Ukraine (CERT-UA) has disclosed details of a phishing campaign that’s designed to…

July 18, 2025

Data Breaches

Critical NVIDIA Container Toolkit Flaw Allows Privilege Escalation on AI Cloud Services

Cybersecurity researchers have disclosed a critical container escape vulnerability in the NVIDIA Container Toolkit that could pose a…

July 18, 2025

Data Breaches

Google Sues 25 Chinese Entities Over BADBOX 2.0 Botnet Affecting 10M Android Devices

Google on Thursday revealed it’s pursuing legal action in New York federal court against 25 unnamed individuals or…

July 18, 2025

Hand-Picked Top-Read Stories

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access

Trending Tags

Hard-Coded Credentials Found in HPE Instant On Devices Allow Admin Access

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers

Malware Injected into 5 npm Packages After Maintainer Tokens Stolen in Phishing Attack

Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers

China’s Massistant Tool Secretly Extracts SMS, GPS Data, and Images From Confiscated Phones

UNG0002 Group Hits China, Hong Kong, Pakistan Using LNK Files and RATs in Twin Campaigns

Ivanti Zero-Days Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike Attacks

CERT-UA Discovers LAMEHUG Malware Linked to APT28, Using LLM for Phishing Campaign

Critical NVIDIA Container Toolkit Flaw Allows Privilege Escalation on AI Cloud Services

Google Sues 25 Chinese Entities Over BADBOX 2.0 Botnet Affecting 10M Android Devices

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering

Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root