The Hacker News

Google's Built-In AI Defenses on Android Now Block 10 Billion Scam Messages a Month

Google on Thursday revealed that the scam defenses built into Android safeguard users around the world from more than 10 ...
The Hacker News

Russian Ransomware Gangs Weaponize Open-Source AdaptixC2 for Advanced Attacks

The open-source command-and-control (C2) framework known as AdaptixC2 is being used by a growing number of threat actors, ...
The Hacker News

New "Brash" Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL

The vulnerability works on Google Chrome and all web browsers that run on Chromium, which includes Microsoft Edge, Brave, ...
The Hacker News

The Death of the Security Checkbox: BAS Is the Power Behind Real Defense

That shift, from patching on assumption to patching on evidence, was one of the event's defining moments. BAS doesn't tell ...
The Hacker News

ThreatsDay Bulletin: DNS Poisoning Flaw, Supply-Chain Heist, Rust Malware Trick and New RATs Rising

Threat actors refine tactics with DNS attacks, new RATs, and Rust-based malware. Stay ahead with this week’s top ThreatsDay ...
The Hacker News

Experts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices

Botnets exploit PHP flaws and cloud misconfigurations, launching 20 Tbps DDoS and large-scale credential attacks.
The Hacker News

New AI-Targeted Cloaking Attack Tricks AI Crawlers Into Citing Fake Info as Verified Facts

New SPLX research exposes “AI-targeted cloaking,” a simple hack that poisons ChatGPT’s reality and fuels misinformation.
The Hacker News

Preparing for the Digital Battlefield of 2026: Ghost Identities, Poisoned Accounts, & AI Agent Havoc

BeyondTrust predicts 2026 cybersecurity threats will center on identity debt, AI misuse, and account poisoning.
The Hacker News

Discover Practical AI Tactics for GRC — Join the Free Expert Webinar

AI is revolutionizing GRC—automating audits, exposing hidden risks, and redefining compliance faster than regulators can ...
The Hacker News

10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux

Ten typosquatted npm packages (Jul 4, 2025) delivered a 24MB PyInstaller info stealer using 4 obfuscation layers; ~9,900 ...
The Hacker News

Active Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under Attack

Threat actors are actively exploiting multiple security flaws impacting Dassault Systèmes DELMIA Apriso and XWiki, according ...
The Hacker News

New TEE.Fail Side-Channel Attack Extracts Secrets from Intel and AMD DDR5 Secure Enclaves

In response to the disclosure, AMD said it has no plans to provide mitigations since physical vector attacks are out of scope ...