The Hacker News5 小时
Cross-Platform JavaScript Stealer Targets Crypto Wallets in New Lazarus Group Campaign
Lazarus Group targets job seekers via fake LinkedIn offers, delivering malware that steals crypto wallet data.
The Hacker News5 小时
Silent Lynx Using PowerShell, Golang, and C++ Loaders in Multi-Stage Cyberattacks
Seqrite Labs said it observed some level of tactical overlaps between the threat actor and YoroTrooper (aka SturgeonPhisher), ...
The Hacker News7 小时
Cybercriminals Use Go Resty and Node Fetch in 13 Million Password Spraying Attempts
Microsoft 365 tenants faced ATO attempts by late 2024, with attackers using HTTP clients like Axios and Node Fetch.
The Hacker News7 小时
New Veeam Flaw Allows Arbitrary Code Execution via Man-in-the-Middle Attack
"A vulnerability within the Veeam Updater component that allows an attacker to utilize a Man-in-the-Middle attack to execute ...
The Hacker News9 小时
Navigating the Future: Key IT Vulnerability Management Trends
24% of companies ran 4+ vulnerability scans in 2024, up from 15% in 2023, showing a shift to continuous monitoring.
The Hacker News10 小时
AsyncRAT Campaign Uses Python Payloads and TryCloudflare Tunnels for Stealth Attacks
Hackers deliver AsyncRAT using Dropbox URLs and TryCloudflare tunnels, exploiting legitimate services to bypass security ...
The Hacker News15 小时
CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25
CISA adds four exploited vulnerabilities to its KEV catalog, urging fixes by Feb 25, 2025, to counter active threats ...
The Hacker News16 小时
North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS
Contagious Interview, first uncovered in late 2023, is a persistent effort undertaken by the hacking crew to deliver malware ...
The Hacker News16 小时
Crazy Evil Gang Targets Crypto with StealC, AMOS, and Angel Drainer Malware
Crazy Evil, active since 2021, has stolen over $5M via crypto scams, malware like AMOS, and phishing, targeting both Windows ...
The Hacker News1 天
AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin Access
CVE-2024-56161 exposes AMD SEV-SNP to malicious microcode attacks, risking VM data integrity. Discovered by Google, rated ...
The Hacker News1 天
Malicious Go Package Exploits Module Mirror Caching for Persistent Remote Access
Malicious Go package exploits Module Mirror caching to grant remote access, evading detection since November 2021.
The Hacker News1 天
Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections
The flaw, CVE-2025-0411 (CVSS score: 7.0), allows remote attackers to circumvent mark-of-the-web ( MotW) protections and ...