News

The Hacker News3h

Secret Blizzard Deploys Malware in ISP-Level AitM Attacks on Moscow Embassies

Russian APT Secret Blizzard uses ISP-level AitM attacks to deploy ApolloShadow malware on embassy devices in Moscow.
The Hacker News5h

Experts Detect Multi-Layer Redirect Tactic Used to Steal Microsoft 365 Login Credentials

Threat actors abuse Proofpoint and Intermedia link wrapping to deliver phishing emails and steal Microsoft 365 credentials.
The Hacker News10h

UNC2891 Breaches ATM Network via 4G Raspberry Pi, Tries CAKETAP Rootkit for Fraud

UNC2891 used a 4G Raspberry Pi and Linux rootkits to breach ATM networks, exposing flaws in banking infrastructure.
The Hacker News13h

Hackers Exploit Critical WordPress Theme Flaw to Hijack Sites via Remote Plugin Install

Critical WordPress flaw CVE-2025-5394 lets attackers take over sites using the "Alone" theme. 120K+ attempts blocked.
The Hacker News10h

Alert Fatigue, Data Overload, and the Fall of Traditional SIEMs

While SaaS-based SIEMs are marketed as a natural evolution, they often fall short of their on-prem predecessors in practice.
The Hacker News9h

AI-Driven Trends in Endpoint Security: What the 2025 Gartner® Magic Quadrantâ„¢ Reveals

SentinelOne boosts enterprise cyber defense with AI-powered endpoint security, cutting response time and risk across ...
The Hacker News7h

N. Korean Hackers Used Job Lures, Cloud Account Access, and Malware to Steal Millions in Crypto

UNC4899 used job lures and cloud exploits to breach two firms, steal crypto, and embed malware in open source.