HackenPost blogs - Page 98 of 125

Data Breaches

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday disclosed that ransomware actors are targeting unpatched SimpleHelp…

June 13, 2025

Data Breaches

CTEM is the New SOC: Shifting from Monitoring Alerts to Measuring Risk

Introduction: Security at a Tipping Point Security Operations Centers (SOCs) were built for a different era, one defined…

June 13, 2025

Data Breaches

Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware

Apple has disclosed that a now-patched security flaw present in its Messages app was actively exploited in the…

June 13, 2025

Data Breaches

WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network

The threat actors behind the VexTrio Viper Traffic Distribution Service (TDS) have been linked to other TDS services…

June 12, 2025

Data Breaches

New TokenBreak Attack Bypasses AI Moderation with Single-Character Text Changes

Cybersecurity researchers have discovered a novel attack technique called TokenBreak that can be used to bypass a large…

June 12, 2025

Data Breaches

Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction

A novel attack technique named EchoLeak has been characterized as a “zero-click” artificial intelligence (AI) vulnerability that allows…

June 12, 2025

Data Breaches

Non-Human Identities: How to Address the Expanding Security Risk

Human identities management and control is pretty well done with its set of dedicated tools, frameworks, and best…

June 12, 2025

Data Breaches

ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

ConnectWise has disclosed that it’s planning to rotate the digital code signing certificates used to sign ScreenConnect, ConnectWise…

June 12, 2025

Data Breaches

Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool

Cybersecurity researchers have uncovered a new account takeover (ATO) campaign that leverages an open-source penetration testing framework called…

June 12, 2025

Data Breaches

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

Former members tied to the Black Basta ransomware operation have been observed sticking to their tried-and-tested approach of…

June 11, 2025

Hand-Picked Top-Read Stories

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Russia Used Cellebrite on Jailed Activist’s iPhone Months After Sales Cutoff

Google Details Turla’s New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks

Trending Tags

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

CTEM is the New SOC: Shifting from Monitoring Alerts to Measuring Risk

Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware

WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network

New TokenBreak Attack Bypasses AI Moderation with Single-Character Text Changes

Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction

Non-Human Identities: How to Address the Expanding Security Risk

ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Russia Used Cellebrite on Jailed Activist’s iPhone Months After Sales Cutoff

Google Details Turla’s New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks

Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns