News

The Hacker News3h
Hazy Hawk Exploits DNS Records to Hijack CDC, Corporate Domains for Malware Delivery
A threat actor known as Hazy Hawk has been observed hijacking abandoned cloud resources of high-profile organizations, ...
The Hacker News6h
South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware
The attack chains leverage spear-phishing lures as a starting point to activate the infection process and deploy a known ...
The Hacker News6h
AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation
Cybersecurity researchers have discovered risky default identity and access management (IAM) roles impacting Amazon Web ...
The Hacker News8h
The Crowded Battle: Key Insights from the 2025 State of Pentesting Report
Discover findings from Pentera's 2025 State of Pentesting Report, including breach rates, alert fatigue, budget trends & the ...
The Hacker News9h
Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization
Threat hunters have exposed the tactics of a China-aligned threat actor called UnsolicitedBooker that targeted an unnamed ...
The Hacker News10h
Go-Based Malware Deploys XMRig Miner on Linux Hosts via Redis Configuration Abuse
A new cryptojacking campaign dubbed RedisRaider is hijacking publicly exposed Redis servers by injecting cron jobs using ...
The Hacker News13h
Malicious PyPI Packages Exploit Instagram and TikTok APIs to Validate User Accounts
Cybersecurity researchers have uncovered malicious packages uploaded to the Python Package Index (PyPI) repository that act ...