HackenPost blogs - Page 90 of 111

Data Breaches

Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages

Microsoft has shed light on a previously undocumented cluster of malicious activity originating from a Russia-affiliated threat actor…

May 27, 2025

Data Breaches

AI Agents and the Non‑Human Identity Crisis: How to Deploy AI More Securely at Scale

Artificial intelligence is driving a massive shift in enterprise productivity, from GitHub Copilot’s code completions to chatbots that mine…

May 27, 2025

Data Breaches

Employees Searching Payroll Portals on Google Tricked Into Sending Paychecks to Hackers

Threat hunters have exposed a novel campaign that makes use of search engine optimization (SEO) poisoning techniques to…

May 27, 2025

Data Breaches

Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto

As many as 60 malicious npm packages have been discovered in the package registry with malicious functionality to…

May 26, 2025

Data Breaches

CISO’s Guide To Web Privacy Validation And Why It’s Important

Are your web privacy controls protecting your users, or just a box-ticking exercise? This CISO’s guide provides a…

May 26, 2025

Data Breaches

⚡ Weekly Recap: APT Campaigns, Browser Hijacks, AI Malware, Cloud Breaches and Critical CVEs

Cyber threats don’t show up one at a time anymore. They’re layered, planned, and often stay hidden until…

May 26, 2025

Data Breaches

Hackers Use Fake VPN and Browser NSIS Installers to Deliver Winos 4.0 Malware

Cybersecurity researchers have disclosed a malware campaign that uses fake software installers masquerading as popular tools like LetsVPN…

May 25, 2025

Data Breaches

Hackers Use TikTok Videos to Distribute Vidar and StealC Malware via ClickFix Technique

The malware known as Latrodectus has become the latest to embrace the widely-used social engineering technique called ClickFix…

May 23, 2025

Data Breaches

ViciousTrap Uses Cisco Flaw to Build Global Honeypot from 5,300 Compromised Devices

Cybersecurity researchers have disclosed that a threat actor codenamed ViciousTrap has compromised nearly 5,300 unique network edge devices…

May 23, 2025

Data Breaches

300 Servers and €3.5M Seized as Europol Strikes Ransomware Networks Worldwide

As part of the latest “season” of Operation Endgame, a coalition of law enforcement agencies have taken down…

May 23, 2025

Hand-Picked Top-Read Stories

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

Trending Tags

Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages

AI Agents and the Non‑Human Identity Crisis: How to Deploy AI More Securely at Scale

Employees Searching Payroll Portals on Google Tricked Into Sending Paychecks to Hackers

Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto

CISO’s Guide To Web Privacy Validation And Why It’s Important

⚡ Weekly Recap: APT Campaigns, Browser Hijacks, AI Malware, Cloud Breaches and Critical CVEs

Hackers Use Fake VPN and Browser NSIS Installers to Deliver Winos 4.0 Malware

Hackers Use TikTok Videos to Distribute Vidar and StealC Malware via ClickFix Technique

ViciousTrap Uses Cisco Flaw to Build Global Honeypot from 5,300 Compromised Devices

300 Servers and €3.5M Seized as Europol Strikes Ransomware Networks Worldwide

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories

Microsoft Warns of Two Actively Exploited Defender Vulnerabilities

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers