HackenPost blogs - Page 9 of 122

Data Breaches

What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks

Shadow AI used to mean employees pasting things they shouldn’t into ChatGPT. It now means something bigger: employees…

May 29, 2026

Data Breaches

Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh…

May 29, 2026

Data Breaches

Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an…

May 28, 2026

Data Breaches

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

Threat actors are continuing to exploit a critical, now-patched security flaw impacting FortiClient Endpoint Management Server (EMS) deployments…

May 28, 2026

Data Breaches

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share…

May 28, 2026

Data Breaches

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

Every time you think the industry has finally stopped doing some reckless, low-effort crap, somebody spins up a…

May 28, 2026

Data Breaches

Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows…

May 27, 2026

Data Breaches

Malicious npm Package Stole Files From Claude AI User Directory via GitHub

Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities.…

May 27, 2026

Data Breaches

5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

When an employee installs an AI writing assistant, connects a coding copilot to their IDE, or starts summarizing…

May 27, 2026

Data Breaches

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2)…

May 27, 2026

Hand-Picked Top-Read Stories

Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data

Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

Trending Tags

What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks

Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

Malicious npm Package Stole Files From Claude AI User Directory via GitHub

5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data

Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development