TheHackersNews

@zmgxukwfarucom

557 Following

19 Followers

TheHackersNews pfp

@zmgxukwfarucom

AI is already in your SaaS. The real question: Do you know where—or how risky it is? Employees are using ChatGPT, bots, and AI tools without security oversight. Shadow AI is real—and your old playbook won’t catch it. 🔥 WEBINAR — Join AI security expert and learn: 📌 Real https://t.co/kdCHfOIgoz

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 China-backed hackers are deploying TONESHELL v3, StarProxy, and stealth tools like SplatCloak to breach Myanmar targets—dodging EDR, logging keystrokes, and hopping across networks with FakeTLS tricks. ? 3 TONESHELL variants ? 2 new keyloggers (PAKLOG, CorKLOG) ? StarProxy https://t.co/11q34ceiwh

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🛑 CRITICAL ALERT → U.S. funding for MITRE’s CVE vulnerability database program ends Wednesday. MITRE warns: no funding = no new CVEs, degraded threat advisories, and slower incident response. 🛠? CVEs power security tools, alerts, and patching across critical infrastructure. https://t.co/hd0lY1O73m

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 Threat ALERT: ResolverRAT is hitting healthcare and pharma sectors hard — phishing, fear-bait, stealth attacks. 🛡? Sophisticated multi-stage RAT 🌐 Localized lures: Hindi, Italian, Turkish + more 🕵??♂? Advanced evasion: encryption, IP rotation, memory-only payload 🔗 Read: https://t.co/6LLbHRjiWJ

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

? Even patching won't save you. Fortinet confirms attackers kept read-only access to FortiGate devices after patching old flaws (CVE-2022-42475, CVE-2023-27997, CVE-2024-21762) via hidden symlink in SSL-VPN. Full details 👉 https://t.co/AbzC2WPo4r

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔥 Gamaredon (aka Shuckworm) hit a Western military mission in Ukraine with a new, stealthier GammaSteel malware, Symantec warns. 📂 Infected USBs → Hidden shortcut traps → Live exfil via Telegram & Telegraph. 🔗 Full story: https://t.co/QdUBppOFGY

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔥 AI scams just leveled up. Lovable AI scored 1.8/10 on Guardio Labs' security test—the easiest tool for cybercrooks to build phishing sites in minutes. 👀 It auto-deploys fake Microsoft pages, steals credentials, and even sets up admin dashboards. Learn more: https://t.co/29g5QWJeVh

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 Critical alert for Fortinet users! A 9.3 CVSS flaw (CVE-2024-48887) in FortiSwitch lets hackers remotely change admin passwords — no login needed. 🔧 Fix it: Upgrade ASAP (7.6.1+, 7.4.5+, 7.2.9+, 7.0.11+, 6.4.15+) ? No exploits yet—but Fortinet bugs have been weaponized https://t.co/4u4ZrvQEMG

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔎 Vanity metrics ≠ security Fortune 500s still chase patch counts and scan rates—but real threats slip through. Real security = measuring impact, not activity. Gartner predicts CTEM will cut breaches by 66% by 2026. 👉 Learn more: https://t.co/H9duMP8k3J

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

👀 $0 GitHub Action ? $B security nightmare. In Nov 2024, a SpotBugs maintainer accidentally leaked a GitHub access token. ? Attackers exploited it—moving from SpotBugs ? reviewdog ? poisoning tj-actions/changed-files—before striking Coinbase in March 2025. ?? Details https://t.co/lYTurYkQGi

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔥 New Ivanti ZERO-DAY exploited in the wild — China-linked UNC5221 hits Connect Secure (CVE-2025-22457, CVSS 9.0). 💣 Exploits spotted mid-March by Mandiant. 🕵??♂?Malware: TRAILBLAZE, BRUSHFIRE, SPAWN. 🎯 Persistence. Credential theft. Data exfiltration. ? Patch now | See full https://t.co/xXrNyDgPZQ

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🛑 Think that cheap Android phone is a bargain? It might come loaded with Triada—a powerful malware pre-installed on counterfeit devices. 👀 2,600+ victims hit in just two weeks; and hackers stole 💰 $270K+ in crypto. 🔗 Learn more: https://t.co/a5AwBxIQTZ

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔥 New Linux botnet ALERT! Outlaw—a Romanian-linked group—is actively hijacking SSH servers to mine crypto via auto-spreading malware. – Targets servers with weak SSH creds – Uses BLITZ to self-propagate – Installs SHELLBOT for remote control, DDoS, and data theft – Exploits https://t.co/6sA1QGHxMM

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔥 23,958 IPs. 10 days. One target: Palo Alto GlobalProtect. A massive spike in login scans hints at coordinated recon—and possible exploitation ahead. If you run GlobalProtect, this is your early warning. Audit & harden exposed portals now. 🔗 Full story: https://t.co/qdS13qAbvW

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

? THN Weekly Recap – This Week in Cyber: – Chrome 0-Day exploited in the wild – Kubernetes RCE nightmare exposed – Solar inverters at risk of blackouts – Rclone-powered leak site breached – DNS-based phishing just got stealthier 📩 Catch up now: https://t.co/MxDpIy57Yy

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 New Android threat spotted: Crocodilus malware is targeting users in Spain and Turkey, posing as Google Chrome to hijack phones. ? Bypasses Android 13+ protections ? Abuses Accessibility to steal credentials ? Records screen & key actions ? Remotely controls the device ? https://t.co/hfx3rXx7Sa

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

Organizations are shifting their GRC (Governance, Risk, and Compliance) strategies from reactive to proactive. @Hyperproof's 6th annual IT Risk and Compliance Benchmark Report reveals that 91% of companies now have centralized GRC teams, and 72% plan to grow their compliance https://t.co/AFe8ximyh7

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

👀 6-year-old bugs are back—and being weaponized. CISA just flagged two 2019 Sitecore RCE flaws (CVE-2019-9874 & 9875) as actively exploited. But it doesn’t stop there: ?? Next.js auth bypass (CVE-2025-29927) is under live attack ?? DrayTek routers face fresh waves targeting https://t.co/0WKTIeyuuc

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 New Chinese cyber attack spotted. FamousSparrow breached a U.S. trade group + Mexican institute using new, modular malware: SparrowDoor + ShadowPad (first use). ?? Targets ran outdated Exchange + Windows Server. ?? Backdoor includes spying, keylogging, screenshots, file https://t.co/tUy9eI0kM7

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

👀 They hid for 4 YEARS. Chinese state-backed hackers quietly lived inside a major Asian telecom, siphoning sensitive data via stealth tools like INMemory—a web shell that leaves zero forensic trace. Meanwhile, China accused 4 Taiwanese ICEFCOM hackers of cyberattacks—Taiwan https://t.co/AoCVjxBnDh

0 reply

0 recast

0 reaction