Tag: hacker
-
Stealthy hackers exploit cPanel flaw in active backdoor campaign (CVE-2026-41940)
Security researchers at XLab have outlined an active attack campaign targeting CVE-2026-41940, the recently disclosed vulnerability in cPanel WHM, and have linked it to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/12/cpanel-vulnerability-exploited-backdoor-cve-2026-41940/
-
Google Says Hackers Used AI to Build Zero-Day Exploit
Google says hackers used AI to help build a zero-day exploit targeting 2FA, raising concerns about AI-assisted hacking. The post Google Says Hackers Used AI to Build Zero-Day Exploit appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-hackers-ai-zero-day-exploit/
-
Instructure pays ransom after Canvas incident as Congress announces investigation
The company said its agreement with the hackers involved their data being “returned” to them and digital confirmation of data destruction. First seen on therecord.media Jump to article: therecord.media/instructure-pays-ransom-canvas-incident-congress-investigation
-
Instructure strikes deal with hackers who breached it twice
The maker of the Canvas school software said it “reached an agreement” with the hackers, but provided no guarantees that the hackers would not release the data or keep their word. First seen on techcrunch.com Jump to article: techcrunch.com/2026/05/12/instructure-strikes-deal-with-hackers-who-breached-it-twice/
-
Webinar: What the Riskiest SOC Alerts Go Unanswered – and How Radiant Security Can Help
Why do the Riskiest SOC Alerts Go Unanswered?Security operations teams are drowning in alerts. But the real problem isn’t always alert volume; it’s the blind spots. The most dangerous alerts are the ones no one is investigating.A recent report from The Hacker News examined why certain high-risk alert categories – WAF, DLP, OT/IoT, dark web…
-
Nach Cyberangriff auf Canvas: E-Learning-Dienstleister hat Hacker offenbar bezahlt
Schlechtes Vorbild für die Schüler? Dass man Cyberkriminellen kein Lösegeld zahlen sollte, ist eigentlich bekannt. Instructure scheint es dennoch getan zu haben. First seen on golem.de Jump to article: www.golem.de/news/nach-cyberangriff-auf-canvas-e-learning-dienstleister-hat-hacker-offenbar-bezahlt-2605-208579.html
-
Hackers Hijack Microsoft Teams Accounts to Spread ModeloRAT Malware
Hackers are now abusing hijacked Microsoft Teams accounts and fake IT helpdesk chats to push a new, undocumented version of the Python”‘based ModeloRAT into corporate environments. Instead, they use compromised or newly created Microsoft Teams accounts that impersonate internal IT support and message employees directly, claiming to fix an urgent problem with their device or…
-
„Hört auf, diesen KI-Mist zu posten”: Warum Hacker genauso genervt auf KI-Beiträge reagieren wie ihr
First seen on t3n.de Jump to article: t3n.de/news/hoert-auf-diesen-ki-mist-zu-posten-warum-hacker-genauso-genervt-auf-ki-beitraege-reagieren-wie-ihr-1741954/
-
Nordkoreas Hacker-Offensive eskaliert: Shifty Corsair greift gezielt Entwickler und Krypto-Assets an
Da die Angreifer statische Schlüssel direkt in ihre Angriffsketten integrieren, reichen klassische SSH-Sicherheitsmechanismen laut BlueVoyant inzwischen nicht mehr aus. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/nordkoreas-hacker-offensive-eskaliert-shifty-corsair-greift-gezielt-entwickler-und-krypto-assets-an/a45077/
-
Magecart Hackers Exploit Google Tag Manager to Inject Credit Card Skimmers
Magecart-style attackers are once again abusing trusted web services, this time weaponizing Google Tag Manager (GTM) to inject credit card skimmers into ecommerce websites stealthily. Because GTM is widely used and loaded from the trusted domain googletagmanager.com, malicious scripts can blend in with legitimate site functionality, making detection significantly harder. Once embedded into a compromised…
-
Google Warns Hackers Are Using AI to Build Working Zero-Day Exploits
Artificial intelligence has officially transitioned from an experimental hacking novelty into an industrial-scale weapon for cybercriminals. Google Threat Intelligence Group (GTIG) adversaries are now actively using generative AI models to discover vulnerabilities and engineer functional zero-day exploits. This marks a significant escalation in the cyber threat landscape, shifting AI’s role from a simple research assistant…
-
Google Says Hackers Used AI to Develop a Zero-Day Exploit
Google researchers say hackers used AI to develop zero-day exploits, Android backdoors, and automated supply chain attacks targeting GitHub and PyPI. First seen on hackread.com Jump to article: hackread.com/google-hackers-used-ai-develop-zero-day-exploit/
-
Hackers Hid Inside Major UK Water Utility for Nearly 2 Years
ICO Warns Key Security Gaps Led to Exposed Data of Over 630,000 People. A British regulator said a major water sector organization failed to use establish cybersecurity safeguards to secure sensitive data, allowing hackers to use a phishing campaign to gain persistence, steal records and expose more than 630,000 sensitive records. First seen on govinfosecurity.com…
-
Mac Users Warned Over Fake Claude Install Instructions
Hackers are using Google Ads and Claude shared chats to target Mac users with fake setup instructions that can install malware. The post Mac Users Warned Over Fake Claude Install Instructions appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-claude-mac-download-google-ads-malware/
-
Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation
Tags: 2fa, ai, cybercrime, exploit, google, hacker, intelligence, malicious, technology, threat, vulnerability, zero-dayGoogle on Monday disclosed that it identified an unknown threat actor using a zero-day exploit that it said was likely developed with an artificial intelligence (AI) system, marking the first time the technology has been put to use in the wild in a malicious context for vulnerability discovery and exploit generation.The activity is said to…
-
Google warns artificial intelligence is accelerating cyberattacks and zero-day exploits
Tags: access, ai, attack, cloud, cyber, cyberattack, defense, exploit, google, hacker, intelligence, supply-chain, threat, vulnerability, zero-dayGoogle says hackers now use AI to create exploits, automate attacks, evade defenses, and target AI supply chains at scale. Artificial intelligence is rapidly changing the cyber threat landscape, and a new report from the Google Cloud Threat Intelligence team highlights how attackers already use AI to improve vulnerability exploitation and gain initial access to…
-
Poor security left hackers inside water company network for nearly two years
The UK’s data protection regulator, the Information Commissioner’s Office (ICO), fined South Staffordshire Water’s parent company £963,900 over security failures linked to a … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/11/ico-south-staffordshire-cyberattack-fine/
-
What It Costs to Hire a Hacker on the Dark Web in 2026
See how much it costs to hire a hacker or buy data on the Dark Web in 2026. The post What It Costs to Hire a Hacker on the Dark Web in 2026 appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/what-it-costs-to-hire-a-hacker-on-the-dark-web/
-
Instructure confirms hackers used Canvas flaw to deface portals
Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login portals and leave an extortion message. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/instructure-confirms-hackers-used-canvas-flaw-to-deface-portals/
-
Hackers Trick DigiCert Into Issuing Certificates Used to Sign Malware
DigiCert revokes 60 code signing certificates after hackers used a malicious support chat attachment to sign the Zhong Stealer malware. First seen on hackread.com Jump to article: hackread.com/hackers-digicert-issue-certificates-sign-malware/
-
Hackers Hijack JDownloader Site to Deliver Malware Through Installers
JDownloader confirms a security breach where hackers manipulated official download links to distribute malicious files between 6 and 7 May 2026. First seen on hackread.com Jump to article: hackread.com/hackers-hijack-jdownloader-site-malware-installers/
-
Hackers used AI to develop zero-day exploit for web admin tool
Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web administration tool was likely generated using AI. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-hackers-used-ai-to-develop-zero-day-exploit-for-web-admin-tool/
-
Hackers abuse Google ads, Claude.ai chats to push Mac malware
Attackers are abusing Google Ads and legitimate Claude.ai shared chats in an active malvertising campaign. Users searching for “Claude mac download” may come across sponsored search results that list claude.ai as the target website, but lead to instructions that install malware on their Mac. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-abuse-google-ads-claudeai-chats-to-push-mac-malware/
-
Fake Claude Campaign Uses PlugX-Style DLL Sideloading Chain
Hackers are abusing a fake Claude AI download site to deliver a PlugX”‘style DLL sideloading chain that ultimately deploys a new Windows backdoor dubbed “Beagle.” The campaign blends malvertising, a trojanized installer, and signed security software components to achieve stealthy persistence and remote control. Attackers registered claude-pro[.]com, a site that visually imitates Anthropic’s legitimate Claude…
-
Hackers Use AI for Exploit Development, Attack Automation
Cyber adversaries have long used AI, but now attackers are using large language models to develop exploits and orchestrate complex attacks. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/hackers-ai-exploit-dev-attack-automation
-
Hackers Observed Using AI to Develop Zero-Day for the First Time
Google Threat Intelligence Group details how cybercriminals attempted to launch a campaign based around an AI-developed Zero-Day targeting open-source software First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/hackers-using-ai-zero-day-first/
-
UK water company allowed hackers to lurk undetected for nearly two years, regulator finds
The Information Commissioner’s Office (ICO) fined South Staffordshire Water £963,900 ($1.3 million) on Monday over an attack by the Cl0p ransomware group that led to the personal data of 633,887 customers and employees being published in August 2022. First seen on therecord.media Jump to article: therecord.media/uk-water-company-had-hackers-lurking-for-years
-
Hackers Exploit Vercel GenAI to Mass-Produce Convincing Phishing Sites
Hackers are abusing Vercel GenAI to create convincing phishing sites that mimic major brands, including Microsoft, Adidas, and Nike, making scams harder to detect. First seen on hackread.com Jump to article: hackread.com/hackers-exploit-vercel-genai-phishing-sites/
-
Two US Men Jailed for Helping North Korean Hackers Infiltrate US Firms
Matthew Knoot and Erick Prince have been jailed for 18 months each for helping North Korean hackers infiltrate US firms through remote laptop farms. First seen on hackread.com Jump to article: hackread.com/us-men-sentenced-north-korean-hackers-hack-us-firms/