资讯

The Hacker News1 天
New PathWiper Data Wiper Malware Disrupts Ukrainian Critical Infrastructure in 2025 Attack
PathWiper malware hit Ukraine’s critical systems in 2025, wiping data via admin console access and worsening conflict-driven ...
The Hacker News1 天
Popular Chrome Extensions Leak API Keys, User Data via HTTP and Hard-Coded Credentials
Several popular Chrome extensions send sensitive user data over unencrypted HTTP, exposing millions to interception and ...
The Hacker News2 天
Redefining Cyber Value: Why Business Impact Should Lead the Security Conversation
It's this shift that makes the real difference. Security stops being the team that says "no" and starts being the team that ...
The Hacker News2 天
Researchers Detail Bitter APT's Evolving Tactics as Its Geographic Scope Expands
New findings reveal Bitter, an Indian-aligned threat group targeting governments via spear-phishing and advanced malware ...
The Hacker News2 天
DoJ Seizes 145 Domains Tied to BidenCash Carding Marketplace in Global Takedown
The U.S. Department of Justice (DoJ) on Wednesday announced the seizure of cryptocurrency funds and about 145 clearnet and ...
The Hacker News1 天
Inside the Mind of the Adversary: Why More Security Leaders Are Selecting AEV
AEV automates continuous attack simulations for organizations, helping prioritize exploitable risks and improve cyber ...
The Hacker News2 天
Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App
Google-owned Mandiant, in a technical overview of vishing and the social engineering attacks, pointed out the distinct ...
The Hacker News1 天
New Atomic macOS Stealer Campaign Exploits ClickFix to Target Apple Users
A new malware campaign tricks macOS users with fake Spectrum CAPTCHA sites to steal passwords and deliver Atomic Stealer ...
The Hacker News3 天
Your SaaS Data Isn't Safe: Why Traditional DLP Solutions Fail in the Browser Era
Legacy DLP tools miss 70% of data leaks now happening in-browser across SaaS and AI apps. Learn why this matters.
The Hacker News2 天
Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI
Cisco patches critical ISE flaw affecting AWS, Azure, OCI users—unauthenticated access could expose sensitive systems.
The Hacker News4 天
⚡ Weekly Recap: APT Intrusions, AI Malware, Zero-Click Exploits, Browser Hijacks and More
"When used together, CAV and crypting services allow criminals to obfuscate malware, making it undetectable and enabling ...
The Hacker News4 天
Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues
Google Chrome to Distrust Chunghwa and Netlock TLS Certificate Authorities Over Repeated Compliance Failures and Behavioral ...