The Hacker News1h
New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
"While SmokeLoader has historically leveraged packers like Themida, Enigma Protector, and custom crypters, the use of .NET ...
The Hacker News13h
Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining Campaign
Over 1,500 PostgreSQL servers compromised via weak credentials and SQL abuse, enabling fileless crypto mining.
The Hacker News15h
Enterprise Gmail Users Can Now Send End-to-End Encrypted Emails to Any Platform
On the 21st birthday of Gmail, Google has announced a major update that allows enterprise users to send end-to-end encrypted ...
The Hacker News16h
Lucid PhaaS Hits 169 Targets in 88 Countries Using iMessage and RCS Smishing
A new sophisticated phishing-as-a-service (PhaaS) platform called Lucid has targeted 169 entities in 88 countries using ...
The Hacker News19h
Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices
The development comes as the tech giant released iOS 18.4 and iPadOS 18.4 to remedy 62 flaws, macOS Sequoia 15.4 to plug 131 ...
The Hacker News19h
China-Linked Earth Alux Uses VARGEIT and COBEACON in Multi-Stage Cyber Intrusions
Earth Alux used VARGEIT and MASQLOADER in APAC and LATAM cyberattacks, bypassing defenses via stealth techniques.
The Hacker News19h
Nearly 24,000 IPs Target PAN-OS GlobalProtect in Coordinated Login Scan Campaign
IPs scanned Palo Alto GlobalProtect portals in late March, signaling systemic recon before potential exploits.
The Hacker News19h
New Case Study: Global Retailer Overshares CSRF Tokens with Facebook
Facebook Pixel exposed CSRF tokens at major retailer; Reflectiz detected breach early, preventing €20M GDPR fines.