Collecting Cyber-News from over 60 sources

Tag: hacker

Hacker manipulieren populäre WordPress-Plugins

Jun 15, 2026 3:01 PM

Tags: hacker, wordpress

Ein Angreifer hat JavaScript-Dateien von drei WordPress-Plugins manipuliert, um unbemerkt administrative Hintertüren auf Webseiten zu installieren. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/wordpress-plugins-hacker
Velvet Ant Hackers Backdoor OpenSSH and PAM to Spy on Critical Infrastructure Network

Jun 15, 2026 3:01 PM

Tags: access, authentication, backdoor, china, cyber, hacker, infrastructure, Internet, network, spy

A long-running, highly disciplined intrusion attributed to the China-nexus actor known as Velvet Ant has been revealed as a near-decade campaign of silent access that culminated in the replacement of core authentication components OpenSSH binaries and PAM modules across a segregated critical-infrastructure network. The intrusion chain began with compromises of internet-facing systems where the operator…
Belarus-linked hackers target Gmail accounts of Polish public figures and their families

Jun 15, 2026 2:01 PM

Tags: group, hacker, phishing

Poland has warned that Ghostwriter, the Belarus-linked hacker group, has expanded its phishing operations to target personal Gmail accounts belonging to senior public figures and their relatives. First seen on therecord.media Jump to article: therecord.media/ghostwriter-targets-personal-gmail-accounts-in-poland
Hacker melden massiven Datendiebstahl beim Europarat

Jun 15, 2026 1:01 PM

Tags: hacker

Die Hackergruppe ShinyHunters meldet einen massiven Datendiebstahl beim Europarat. Betroffen sind Personal- und Gehaltsdaten von 10.000 Mitarbeitern. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/europarat-hacker-datendiebstahl
Russia-Aligned Hackers Exploit Old WinRAR Vulnerability to Target Ukrainian Organizations

Jun 15, 2026 9:01 AM

Tags: access, attack, cve, cyber, exploit, hacker, russia, ukraine, vulnerability

CVE-2025-8088, a WinRAR path traversal vulnerability patched in July 2025, remains a potent initial access vector for multiple intrusion sets targeting Ukraine. Analysis of attacks through April 2026 shows at least two distinct campaigns exploiting this vulnerability: a compiled-stealer chain attributed to an intrusion set we temporarily label SHADOW-EARTH-066 (tracked by CERT”‘UA as UAC”‘0226) and…
APT37 Hackers Use NarwhalRAT Malware With MS-Themed Phishing and Dead-Drop C2

Jun 15, 2026 9:01 AM

Tags: backdoor, cyber, data, hacker, malicious, malware, microsoft, phishing, powershell, social-engineering, spear-phishing, theft

APT37 is using NarwhalRAT in a tightly engineered intrusion chain that starts with Microsoft-themed spear-phishing, pivots through malicious LNK files and PowerShell, and ends with a Python-based backdoor with dead-drop C2 via pCloud. The campaign is notable for its layered tradecraft: social engineering, LOLBin abuse, scheduled-task persistence, in-memory execution, and selective data theft are all…
Kriminelle verkaufen Daten von 4,9 Millionen Wise-Kunden

Jun 14, 2026 9:01 PM

Tags: hacker, Internet

Ein Hacker bietet im Internet 4,9 Millionen Kundendaten der Finanzplattform Wise zum Verkauf an. Betroffen sind vor allem Nutzer aus Spanien. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/49-millionen-wise-kunden-darknet
Hackers Hide New Argamal Malware Inside Working Hentai Games

Jun 14, 2026 9:01 PM

Tags: access, hacker, kaspersky, malware

Kaspersky found Argamal malware hidden in hentai game installers, giving hackers remote access through working games shared on adult sites and torrents. First seen on hackread.com Jump to article: hackread.com/hackers-hide-argamal-malware-hentai-games/
Chinese hackers hijack auth flow, spy on isolated network for a decade

Jun 13, 2026 5:02 PM

Tags: authentication, china, control, hacker, network, spy

Chinese hackers took control of a target organization’s authentication stack and maintained persistence for 10 years, with full visibility into the administrative activity. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-hackers-hijack-auth-flow-spy-on-isolated-network-for-a-decade/
Chinese hackers hijack auth flow, spy on isolated network for a decade

Jun 13, 2026 5:02 PM

Tags: authentication, china, control, hacker, network, spy

Chinese hackers took control of a target organization’s authentication stack and maintained persistence for 10 years, with full visibility into the administrative activity. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-hackers-hijack-auth-flow-spy-on-isolated-network-for-a-decade/
ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

Jun 12, 2026 11:02 PM

Tags: hacker, oracle, software, zero-day

A major bug in Oracle’s ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/shinyhunters-oracle-zero-day-higher-ed
Privacy own-goal: World Cup blunder leaks Lionel Messi’s passport details

Jun 12, 2026 10:02 PM

Tags: data-breach, hacker, leak, privacy

Argentina’s World Cup squad had their passport numbers leaked before a ball was kicked – not by hackers, but by someone who failed to redact a document properly. document. It’s a mistake that has been made many times in the past… First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/privacy-own-goal-world-cup-blunder-leaks-lionel-messis-passport-details
China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade

Jun 12, 2026 10:02 PM

Tags: access, china, group, hacker, linux, login, network, software

Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the Linux login system itself.Sygnia, which tracks the group as Velvet Ant, says it backdoored the PAM and OpenSSH components that decide who is allowed to sign in, planting its access where ordinary…
Bankruptcy admin approves settlement fund of $47 million for 23andMe data breach victims

Jun 12, 2026 8:02 PM

Tags: breach, data, data-breach, hacker

About 7 million customers of the genetics testing company had their data stolen by hackers starting in April 2023, and many had their information posted on the dark web. First seen on therecord.media Jump to article: therecord.media/bankruptcy-admin-approves-settlement-for-23andme-breach-victims
Hackers Abuse NinjaOne RMM Agent to Gain Remote Access to Brazilian Organizations

Jun 12, 2026 2:02 PM

Tags: access, business, cyber, exploit, finance, hacker, malware, monitoring, phishing, social-engineering

An active phishing campaign that weaponizes a legitimate NinjaOne Remote Monitoring and Management (RMM) agent to gain persistent remote access to Brazilian organizations. Rather than relying on bespoke malware, the operators exploit familiar business workflows and Portuguese-language social engineering to trick finance, procurement, accounting and administrative staff into installing a digitally signed NinjaOne agent that…
Hackers Use Typosquatted npm Packages to Target Web3 Projects and Crypto Wallet Operators

Jun 12, 2026 2:02 PM

Tags: blockchain, crypto, cyber, hacker, malicious, malware, open-source, theft

Hackers have been using typosquatting npm packages to weaponize the trust Web3 teams place in open-source dependencies, turning routine installs into a path for wallet theft, secret harvesting, and staged malware delivery. The campaign is especially dangerous because it blends familiar Ethereum and blockchain branding with postinstall and preinstall abuse, allowing malicious code to execute…
Over 80% of Sports Organizations Targeted by Hackers in the Last Year

Jun 12, 2026 2:02 PM

Tags: cyber, hacker

As the FIFA World Cup 2026 kicks off, a new Darktrace report warns that sports teams and bodies are a major target for cyber criminals First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/sports-organizations-targeted-by/
Hackers Use UAE-India Diplomatic Lure to Deliver SHEETCREEP RAT via Google Sheets

Jun 12, 2026 11:02 AM

Tags: access, control, cyber, espionage, google, hacker, india, rat

An active espionage campaign tracked as SHEETCREEP that leverages a UAE”‘India diplomatic-themed ISO lure to deliver a compact C# remote access trojan (RAT) and uses Google Sheets as its command-and-control (C2) channel. The ISO, named UAE-India_Strategic_Partnership_Week.iso, contains a deceptively iconized LNK file that launches a C# dropper. The dropper extracts a decoy PDF to temp,…
336 Millionen Euro in Bitcoin gewaschen: Geldwäschedienst AudiA6 zerschlagen

Jun 12, 2026 10:02 AM

Tags: hacker

Ein AudiA6 genannter Geldwäschedienst ließ Hacker und Betrüger Bitcoin-Transaktionen in Millionenhöhe verschleiern. Doch damit ist jetzt Schluss. First seen on golem.de Jump to article: www.golem.de/news/336-millionen-euro-in-bitcoin-gewaschen-geldwaeschedienst-audia6-zerschlagen-2606-209687.html
Hacker stehlen Passwörter mit TikTok-Videos: Falsche Spotify-Hacks

Jun 12, 2026 9:02 AM

Tags: crypto, hacker, password

Cyberkriminelle nutzen Videos für kostenloses Spotify Premium auf TikTok, um Schadsoftware zum Diebstahl von Passwörtern und Krypto-Wallets zu verbreiten. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/hacker-passwoerter-tiktok-videos
Angriff auf Ralph Lauren: Hacker erpressen Modekonzern

Jun 12, 2026 8:02 AM

Tags: cyberattack, hacker

Die Hackergruppe ShinyHunters behauptet, 220 Gigabyte an Daten von Ralph Lauren gestohlen zu haben. Der Konzern hat den Vorfall bisher nicht bestätigt. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/hackerangriff-auf-ralph-lauren
Breach Roundup: CISA Says Agencies Should ‘Patch Smarter’

Jun 11, 2026 11:02 PM

Tags: ai, breach, cisa, data, hacker, microsoft, russia, update

Also, France Probes Tchap Breach, M&S Cancels Bonuses, June Patch Tuesday. This week, CISA tightened patching rules, hackers provoked AI scanners. An accused Russian intel hacker appeared in court. Microsoft warned of AI-themed attacks. M&S canceled bonuses. France probed a Tchap breach. NHS trusts disclosed stolen data and a Telegram campaign targeted Russian troops. First…
Oracle warns of security bug that hackers abused to breach 100+ companies

Jun 11, 2026 11:02 PM

Tags: breach, cybercrime, exploit, flaw, google, hacker, hacking, oracle, vulnerability

The tech giant warned of a security flaw that a cybercrime gang said it’s exploiting as part of a mass-hacking campaign. Google said it notified more than 100 organizations that had potentially vulnerable servers. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/11/oracle-warns-of-security-bug-that-hackers-abused-to-breach-100-companies/
ShinyHunters Leak 40GB of University of Nottingham Student Data

Jun 11, 2026 11:02 PM

Tags: data, finance, hacker, leak

ShinyHunters hackers leak 40GB of University of Nottingham personal and financial data, allegedly impacting 450,000 students and staff records. First seen on hackread.com Jump to article: hackread.com/shinyhunters-university-of-nottingham-student-data-leak/
Phishing Attack Volume Down 20%, but Risk Still Rising

Jun 11, 2026 10:02 PM

Tags: ai, attack, hacker, phishing, risk

Hackers are valuing quality over quantity, using AI to upgrade their phishing attacks rather than multiplying them. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-analytics/phishing-volume-down-20-risk-rising
Hacker linked to Void Blizzard faces charges over cyberespionage campaign

Jun 11, 2026 6:02 PM

Tags: blizzard, cyberespionage, hacker

Denis Obrezko, 36, made his initial appearance in federal court in Boston on Tuesday after being transferred to U.S. custody from Thailand, where he was arrested last November. First seen on therecord.media Jump to article: therecord.media/hacker-linked-to-void-blizzard-faces-charges
Hacker linked to Void Blizzard faces charges over cyberespionage campaign

Jun 11, 2026 6:02 PM

Tags: blizzard, cyberespionage, hacker

Denis Obrezko, 36, made his initial appearance in federal court in Boston on Tuesday after being transferred to U.S. custody from Thailand, where he was arrested last November. First seen on therecord.media Jump to article: therecord.media/hacker-linked-to-void-blizzard-faces-charges
Hackers Use Fake Claude Code Guide and AI PDFs to Spread AsyncRAT Malware

Jun 11, 2026 4:02 PM

Tags: ai, attack, guide, hacker, malware, powershell, windows

Hackers are using fake Claude Code guide and AI PDFs to spread AsyncRAT malware via Windows attack using PowerShell and Defender exclusions. First seen on hackread.com Jump to article: hackread.com/hackers-fake-claude-code-guide-ai-pdfs-asyncrat/
Hackers Exploit SniperDz PhaaS for Brand Spoofing and Browser Hijacking

Jun 11, 2026 3:02 PM

Tags: cyber, data, exploit, fraud, government, hacker, middle-east, mobile, phishing, scam, service

A wave of phishing campaigns across the Middle East and North Africa exposes a sophisticated, centralized fraud ecosystem operating under the SniperDz banner. What initially appeared as isolated Facebook and Instagram scams fake offers for free mobile data, government subsidies, and compensation are linked to a turnkey Push-Notification-as-a-Service (PNaaS) and Phishing-as-a-Service (PhaaS) affiliate platform that…
Hackers Use Residential Proxies Networks to Evade Detection

Jun 11, 2026 12:02 PM

Tags: cloud, cyber, defense, detection, dns, hacker, network, threat

The impact of residential proxies across our customer base by compiling billions of DNS resolutions and the associated network telemetry. The Kimwolf Botnet inside our enterprise customer networks. Follow”‘up analysis of billions of DNS resolutions across Infoblox Threat Defense Cloud customers reveals a more systemic problem: in 2026 more than 65% of customers queried domains associated with residential…