The Hacker News5 時間
U.S. Treasury Lifts Tornado Cash Sanctions Amid North Korea Money Laundering Probe
U.S. Treasury lifts Tornado Cash sanctions after Fifth Circuit ruling, removing 100+ ETH wallets to bolster digital asset ...
The Hacker News8 時間
Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates
Medusa ransomware uses ABYSSWORKER driver with stolen certificates to disable EDR and enable RDP access, risking data ...
The Hacker News23 時間
UAT-5918 Targets Taiwan's Critical Infrastructure Using Web Shells and Open-Source Tools
UAT-5918 has attacked Taiwan infrastructure since 2023 using web shells and open-source tools to steal credentials.
The Hacker News1 日
China-Linked APT Aquatic Panda: 10-Month Campaign, 7 Global Targets, 5 Malware Families
China-linked APT Aquatic Panda targeted 7 organizations in a 10-month espionage campaign using five malware families.
The Hacker News1 日
10 Critical Network Pentest Findings IT Teams Overlook
PenTest’s 10,000+ pentests reveal exploitable network gaps from misconfigurations and weak passwords, driving continuous ...
The Hacker News1 日
Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers
Kaspersky reveals Head Mare and Twelve join forces targeting Russian entities via vulnerabilities and new tools, escalating ...
The Hacker News1 日
Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility
Active exploitation of Cisco CVE-2024-20439 & 20440 in Smart Licensing forces urgent patching of vulnerable versions.
The Hacker News1 日
Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
According to Bazydlo and researcher Sina Kheirkhah, CVE-2025-23120 stems from Veeam's inconsistent handling of ...
The Hacker News2 日
CERT-UA Warns: Dark Crystal RAT Targets Ukrainian Defense via Malicious Signal Messages
CERT-UA warns of a DCRat campaign via Signal targeting Ukrainian defense; UAC-0200 active since summer 2024 risks breaches.
The Hacker News1 日
YouTube Game Cheats Spread Arcane Stealer Malware to Russian-Speaking Users
YouTube game cheat videos deliver Arcane stealer malware; attack chain extracts sensitive data via batch files and PowerShell ...
The Hacker News2 日
CISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active Exploitation
CISA adds flaw CVE-2024-48248 to NAKIVO pre-10.11.3; active exploit risks data exposure, FCEB must mitigate by April 9, 2025.
The Hacker News2 日
Six Governments Likely Use Israeli Paragon Spyware to Hack IM Apps and Harvest Data
The governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are likely customers of spyware developed by ...