HackenPost blogs - Page 97 of 125

Data Breaches

Are Forgotten AD Service Accounts Leaving You at Risk?

For many organizations, Active Directory (AD) service accounts are quiet afterthoughts, persisting in the background long after their…

June 17, 2025

Data Breaches

Hard-Coded ‘b’ Password in Sitecore XP Sparks Major RCE Risk in Enterprise Deployments

Cybersecurity researchers have disclosed three security flaws in the popular Sitecore Experience Platform (XP) that could be chained…

June 17, 2025

Data Breaches

Backups Are Under Attack: How to Protect Your Backups

Ransomware has become a highly coordinated and pervasive threat, and traditional defenses are increasingly struggling to neutralize it.…

June 17, 2025

Data Breaches

New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks

Cybersecurity researchers have called attention to a new campaign that’s actively exploiting a recently disclosed critical security flaw…

June 17, 2025

Data Breaches

TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw in TP-Link wireless…

June 17, 2025

Data Breaches

⚡ Weekly Recap: iPhone Spyware, Microsoft 0-Day, TokenBreak Hack, AI Data Leaks and More

Some of the biggest security problems start quietly. No alerts. No warnings. Just small actions that seem normal…

June 16, 2025

Data Breaches

Playbook: Transforming Your Cybersecurity Practice Into An MRR Machine

Introduction The cybersecurity landscape is evolving rapidly, and so are the cyber needs of organizations worldwide. While businesses…

June 16, 2025

Data Breaches

Malicious PyPI Package Masquerades as Chimera Module to Steal AWS, CI/CD, and macOS Data

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that’s capable of harvesting…

June 16, 2025

Data Breaches

Discord Invite Link Hijacking Delivers AsyncRAT and Skuld Stealer Targeting Crypto Wallets

A new malware campaign is exploiting a weakness in Discord’s invitation system to deliver an information stealer called…

June 14, 2025

Data Breaches

Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month

Cybersecurity researchers are calling attention to a “large-scale campaign” that has been observed compromising legitimate websites with malicious…

June 13, 2025

Hand-Picked Top-Read Stories

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Russia Used Cellebrite on Jailed Activist’s iPhone Months After Sales Cutoff

Google Details Turla’s New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks

Trending Tags

Are Forgotten AD Service Accounts Leaving You at Risk?

Hard-Coded ‘b’ Password in Sitecore XP Sparks Major RCE Risk in Enterprise Deployments

Backups Are Under Attack: How to Protect Your Backups

New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks

TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert

⚡ Weekly Recap: iPhone Spyware, Microsoft 0-Day, TokenBreak Hack, AI Data Leaks and More

Playbook: Transforming Your Cybersecurity Practice Into An MRR Machine

Malicious PyPI Package Masquerades as Chimera Module to Steal AWS, CI/CD, and macOS Data

Discord Invite Link Hijacking Delivers AsyncRAT and Skuld Stealer Targeting Crypto Wallets

Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Russia Used Cellebrite on Jailed Activist’s iPhone Months After Sales Cutoff

Google Details Turla’s New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks

Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns