HackenPost blogs - Page 9 of 91 - HACKENPOST FOR YOU

Data Breaches

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

Apple on Friday released security updates for iOS, iPadOS, macOS, tvOS, watchOS, visionOS, and its Safari web browser…

December 13, 2025

Data Breaches

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

Cybersecurity researchers are calling attention to a new campaign that’s leveraging GitHub-hosted Python repositories to distribute a previously…

December 12, 2025

Data Breaches

New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale

Cybersecurity researchers have documented four new phishing kits named BlackForce, GhostFrame, InboxPrime AI, and Spiderman that are capable…

December 12, 2025

Data Breaches

Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work

The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to…

December 12, 2025

Data Breaches

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

The React team has released fixes for two new types of flaws in React Server Components (RSC) that,…

December 12, 2025

Data Breaches

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to patch the recent React2Shell vulnerability…

December 12, 2025

Data Breaches

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting OSGeo GeoServer…

December 12, 2025

Data Breaches

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

This week’s cyber stories show how fast the online world can turn risky. Hackers are sneaking malware into…

December 11, 2025

Data Breaches

NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems

Cybersecurity researchers have disclosed details of a new fully-featured Windows backdoor called NANOREMOTE that uses the Google Drive…

December 11, 2025

Data Breaches

Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

Google on Wednesday shipped security updates for its Chrome browser to address three security flaws, including one it…

December 11, 2025

Hand-Picked Top-Read Stories

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

Trending Tags

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale

Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems

Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History

npm’s Update to Harden Their Supply Chain, and Points to Consider

Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems