Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices
iT4iNT SERVER Dutch authorities have announced the takedown of a botnet that enslaved millions of infected devices, including computers, tablets, sma…
Showing posts from May, 2026Show all
How to Configure Reverse DNS (rDNS) for Your Dedicated Server
Server Hosting Running a Dedicated Servers comes with its own set of challenges, and if you’re here reading this, chances are you’ve either been told…
ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface
iT4iNT SERVER Cybersecurity researchers have disclosed details of a vulnerability in OpenAI ChatGPT that leverages the artificial intelligence (AI) a…
Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
iT4iNT SERVER An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining i…
New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
iT4iNT SERVER A previously undocumented threat actor dubbed GREYVIBE has been attributed to ongoing and persistent attacks targeting Ukraine and Ukra…
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
iT4iNT SERVER Threat actors are continuing to exploit a critical, now-patched security flaw impacting FortiClient Endpoint Management Server (EMS) de…
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
iT4iNT SERVER Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share their fi…
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
iT4iNT SERVER A new campaign orchestrated by a previously undocumented threat actor has targeted cryptocurrency organizations with an aim to facilita…
Gitea Vulnerability Exposes Private Container Images without Authentication
iT4iNT SERVER Cybersecurity researchers have disclosed a security flaw in Gitea, an open-source, self-hosted platform for version control, that allow…
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
iT4iNT SERVER Microsoft has warned of an active cryptojacking campaign that makes use of artificial intelligence (AI) chatbot interactions as a mecha…
New AI DDoS Attacks Are Smarter. Learn How to Fight Back in This Webinar
iT4iNT SERVER Every single day, hackers are finding new ways to crash websites and steal data. But right now, something has changed. Hackers are no…
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
iT4iNT SERVER The Iranian state-sponsored threat actor known as Nimbus Manticore (aka Screening Serpens and UNC1549) has been attributed to a fresh c…
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks
iT4iNT SERVER Threat actors are exploiting a recently disclosed critical security flaw in Ghost CMS to inject malicious JavaScript code with an aim t…
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
iT4iNT SERVER A new coordinated cross-ecosystem software supply chain attack campaign has targeted npm, PyPI, and Crates.io to distribute credential-…
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
iT4iNT SERVER GitHub has rolled out new controls for npm to improve the security of the software supply chain, giving maintainers the ability to expl…
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
iT4iNT SERVER Anthropic on Friday disclosed that Project Glasswing has helped uncover more than 10,000 high- or critical-severity vulnerabilities acr…
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
iT4iNT SERVER Cybersecurity researchers have flagged a fresh software supply chain attack campaign that has targeted multiple PHP packages belonging …
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
iT4iNT SERVER Cybersecurity researchers have disclosed details of a new automated campaign called Megalodon that has pushed 5,718 malicious commits t…
Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor
iT4iNT SERVER Cybersecurity researchers have disclosed details of a new Linux malware dubbed Showboat that has been put to use in a campaign targetin…
ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories
iT4iNT SERVER This week starts small. A token leaks. A bad package slips in. A login trick works. An old tool shows up again. At first, it feels li…
When Identity is the Attack Path
iT4iNT SERVER Consider a cached access key on a single Windows machine. It got there the way most cached credentials do - a user logged in, and the k…
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
iT4iNT SERVER Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing the security of arti…
Typosquatting Is No Longer a User Problem. It's a Supply Chain Problem
iT4iNT SERVER AI-generated lookalike domains are now embedded inside the third-party scripts running on your web properties. Here's why your curr…
The New Phishing Click: How OAuth Consent Bypasses MFA
iT4iNT SERVER In February 2026, a phishing-as-a-service (PhaaS) platform called EvilTokens went live. Within five weeks, it had compromised more than…
SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access
iT4iNT SERVER Critical security vulnerabilities have been disclosed in SEPPMail Secure E-Mail Gateway, an enterprise-grade email security solution, t…
How to Reduce Phishing Exposure Before It Turns into Business Disruption
iT4iNT SERVER What happens when a phishing email looks clean enough to pass through security, but dangerous enough to expose the business after one c…
Developer Workstations Are Now Part of the Software Supply Chain
iT4iNT SERVER Supply chain attackers are not only trying to slip malicious code into trusted software. They are trying to steal the access that makes…
Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations
iT4iNT SERVER A new analysis of the Lua-based fast16 malware has confirmed that it was a cyber sabotage tool designed to tamper with nuclear weapons …
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt
iT4iNT SERVER Grafana has disclosed that an "unauthorized party" obtained a token that granted them the ability to access the company's…
Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming
iT4iNT SERVER A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under active exploitation in the wild …
Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access
iT4iNT SERVER The Russian state-sponsored hacking group known as Turla has transformed its custom backdoor Kazuar into a modular peer-to-peer (…
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
iT4iNT SERVER Cybersecurity researchers have disclosed a set of four security flaws in OpenClaw that could be chained to achieve data theft, privileg…
What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface
iT4iNT SERVER In Your Biggest Security Risk Isn't Malware — It's What You Already Trust, we made a simple argument: the most dangerous activi…
Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike
iT4iNT SERVER The Belarus-aligned threat group known as Ghostwriter has been attributed to a fresh set of attacks targeting governmental organization…
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
iT4iNT SERVER An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days invol…
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption
iT4iNT SERVER Details have emerged about a new variant of the recent Dirty Frag Linux local privilege escalation (LPE) vulnerability that allows loca…
Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday
iT4iNT SERVER Microsoft has unveiled a new multi-model artificial intelligence (AI)-driven system called MDASH to facilitate vulnerability discovery …
GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data
iT4iNT SERVER Cybersecurity researchers are calling attention to a new campaign dubbed GemStuffer that has targeted the RubyGems repository with more…
New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots
iT4iNT SERVER Cybersecurity researchers have flagged a new version of the TrickMo Android banking trojan that uses The Open Network (TON) for command…
Why Agentic AI Is Security's Next Blind Spot
iT4iNT SERVER Agentic AI is already running in production environments across many organizations today. It is executing tasks, consuming data, and ta…
Your Purple Team Isn't Purple — It's Just Red and Blue in the Same Room
iT4iNT SERVER Defending a network at 2 am looks a lot like this: an analyst copy-pasting a hash from a PDF into a SIEM query. A red team script is be…
Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloads
iT4iNT SERVER A malicious Hugging Face repository managed to take a spot in the platform's trending list by impersonating OpenAI's Privacy Fi…
Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak
iT4iNT SERVER Cybersecurity researchers have disclosed a critical security vulnerability in Ollama that, if successfully exploited, could allow a rem…
cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now
iT4iNT SERVER cPanel has released updates to address three vulnerabilities in cPanel and Web Host Manager (WHM) that could be exploited to achieve pr…
TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms
iT4iNT SERVER Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that's capable of targeting 59 bank…
Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
iT4iNT SERVER Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been explored in limited attacks in the wild. …
One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breaches
iT4iNT SERVER The hardest part of cybersecurity isn't the technology, it’s the people. Every major breach you’ve read about lately usually start…
The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Open
iT4iNT SERVER For nearly 20 years, we at The Hacker News have mostly told scary stories about cyberspace — big hacks, broken systems, and new threats…
Google's Android Apps Get Public Verification to Stop Supply Chain Attacks
iT4iNT SERVER Google has announced expanded Binary Transparency for Android as a way to safeguard the ecosystem from supply chain attacks. "Thi…
Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
iT4iNT SERVER The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP Server, incl…
