Collecting Cyber-News from over 60 sources

Tag: hacker

Hackers Exploit SniperDz PhaaS for Brand Spoofing and Browser Hijacking

Jun 11, 2026 3:02 PM

Tags: cyber, data, exploit, fraud, government, hacker, middle-east, mobile, phishing, scam, service

A wave of phishing campaigns across the Middle East and North Africa exposes a sophisticated, centralized fraud ecosystem operating under the SniperDz banner. What initially appeared as isolated Facebook and Instagram scams fake offers for free mobile data, government subsidies, and compensation are linked to a turnkey Push-Notification-as-a-Service (PNaaS) and Phishing-as-a-Service (PhaaS) affiliate platform that…
Hackers Use Residential Proxies Networks to Evade Detection

Jun 11, 2026 12:02 PM

Tags: cloud, cyber, defense, detection, dns, hacker, network, threat

The impact of residential proxies across our customer base by compiling billions of DNS resolutions and the associated network telemetry. The Kimwolf Botnet inside our enterprise customer networks. Follow”‘up analysis of billions of DNS resolutions across Infoblox Threat Defense Cloud customers reveals a more systemic problem: in 2026 more than 65% of customers queried domains associated with residential…
Microsoft warnt: Hacker attackieren Outlook-Nutzer über gefährliche Exchange-Lücke

Jun 11, 2026 12:02 PM

Tags: bug, exploit, hacker, mail, microsoft

Angreifer können Outlook-Nutzern durch eine Sicherheitslücke in Exchange per E-Mail Schadcode unterschieben. Entsprechende Attacken laufen bereits. First seen on golem.de Jump to article: www.golem.de/news/microsoft-warnt-hacker-attackieren-outlook-nutzer-ueber-gefaehrliche-exchange-luecke-2606-209657.html
Hackers Abuse VMware-Signed Binary to Deploy NIGHTFORGE Loader

Jun 11, 2026 10:02 AM

Tags: cyber, espionage, government, hacker, vmware

Two closely related espionage campaigns targeting Cambodian government organizations that abuse a legitimate VMware-signed binary to sideload a custom loader dubbed NIGHTFORGE, which in turn deploys a Havoc Demon implant in memory. TRU attributes both operations to a previously unreported cluster it calls Khmer Shadow, based on targeting, lure construction and shared infrastructure; the activity…
Hackers Exploit AWS CloudTrail and Google Cloud Logging to Hide Attacks and Steal Logs

Jun 11, 2026 9:02 AM

Tags: attack, cloud, cyber, detection, exploit, google, hacker, service, threat

Threat actors increasingly abuse Amazon Web Services (AWS) CloudTrail and Google Cloud Logging to evade detection, poison or exfiltrate logs, and in some cases maintain long-term visibility into victim environments. The techniques are simple in concept, powerful in effect, and evade many orgs that assume logs themselves are sacrosanct. At the core of these attacks…
Hackers Exploit AWS CloudTrail and Google Cloud Logging to Hide Attacks and Steal Logs

Jun 11, 2026 9:02 AM

Tags: attack, cloud, cyber, detection, exploit, google, hacker, service, threat

Threat actors increasingly abuse Amazon Web Services (AWS) CloudTrail and Google Cloud Logging to evade detection, poison or exfiltrate logs, and in some cases maintain long-term visibility into victim environments. The techniques are simple in concept, powerful in effect, and evade many orgs that assume logs themselves are sacrosanct. At the core of these attacks…
ServiceNow says security researchers, not hackers, accessed data

Jun 11, 2026 6:01 AM

Tags: data, hacker

First seen on scworld.com Jump to article: www.scworld.com/news/servicenow-says-security-researchers-not-hackers-accessed-data
North Koreans behind nearly half of US tech industry hacks, says CrowdStrike

Jun 10, 2026 11:02 PM

Tags: attack, crowdstrike, hacker, north-korea, threat

North Korean hackers posing as remote IT workers and recruiters remain a major threat to U.S., European, and Asian companies, accounting for about half of all attacks over the past 12 months. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/10/north-koreans-behind-nearly-half-of-us-tech-industry-hacks-says-crowdstrike/
CISA gives US federal agencies three days to fix a VPN bug under attack by a ransomware gang

Jun 9, 2026 8:42 PM

Tags: attack, cisa, exploit, hacker, ransomware, vpn

Check Point said hackers broke into dozens of organizations by exploiting a VPN bug in several of its products used across the government. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/09/cisa-gives-us-federal-agencies-three-days-to-fix-a-vpn-bug-under-attack-by-a-ransomware-gang/
Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Jun 9, 2026 7:42 PM

Tags: github, hacker, microsoft, open-source, security-incident

Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an information stealer into the code.”Our priority is to protect customers and the broader ecosystem,” a Microsoft spokesperson told The Hacker News via email. “We…
Hackers pose as women seeking romance to spy on Russian soldiers

Jun 9, 2026 4:43 PM

Tags: cybersecurity, group, hacker, russia, spy

The group, dubbed SiribClone by Russian cybersecurity firm F6, has been active since at least the summer of 2025 and has primarily targeted members of the Russian armed forces stationed in border regions and combat zones. First seen on therecord.media Jump to article: therecord.media/hackers-pose-as-women-seeking-romance-russian-military
French government messaging platform breached through account hijacking

Jun 9, 2026 4:43 PM

Tags: access, government, hacker

French authorities are investigating a compromise of Tchap, the government’s secure messaging platform, after hackers hijacked a user account and gained access to public … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/09/tchap-french-government-secure-messaging-platform-breach/
North Korea Hackers Weaponize GitHub to Target Developers

Jun 9, 2026 2:42 PM

Tags: crypto, cyber, email, finance, github, hacker, korea, malware, north-korea, phishing, technology

A sustained phishing campaign that leverages developer recruitment and code-review lures to deliver cross”‘platform malware via attacker-controlled GitHub repositories. Tracked as UNK_DeadDrop and attributed with high confidence to a North Korea”‘aligned actor, the operation targeted nearly 100 organizations across finance, cryptocurrency, education and technology by sending more than 250 tailored emails over six weeks. The…
Passwort-Bypass bei Check Point: Hacker greifen VPN-Systeme an

Jun 9, 2026 1:43 PM

Tags: cyberattack, hacker, password, ransomware, vpn, vulnerability

Eine Logiklücke in Check-Point-VPNs (CVE-2026-50751) erlaubt Passwörter zu umgehen. Die Schwachstelle wird aktiv für Ransomware-Angriffe ausgenutzt. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/passwort-bypass-bei-check-point
Handala Claims Israeli Radar Hack, But Evidence Shows Phone Admin Panel

Jun 9, 2026 1:43 PM

Tags: cyberattack, group, hacker, iran, military, phone

An Iranian-linked hacker group called Handala claimed to have hit Israeli military targets with massive cyberattacks on Sunday,… First seen on hackread.com Jump to article: hackread.com/handala-israeli-radar-hack-evidence-phone-admin-panel/
French govt messaging service breached in account hijacking attack

Jun 9, 2026 1:43 PM

Tags: attack, breach, government, hacker, service

DINUM, the digital affairs directorate of the French government, warned that hackers used a hijacked user account to breach Tchap, the French government’s encrypted messaging platform. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/french-govt-messaging-service-breached-in-account-hijacking-attack/
Hackers Exploit ChatGPT, Claude, DeepSeek Brands in Credential Phishing Attacks

Jun 9, 2026 7:42 AM

Tags: ai, attack, breach, chatgpt, credentials, cyber, exploit, hacker, phishing, social-engineering, threat

Threat actors are increasingly weaponizing the global fascination with large language models and generative AI by impersonating major AI brands ChatGPT, Anthropic’s Claude, DeepSeek, and others to trick users into revealing credentials, payment information, and to install malware. These campaigns are not breaches of the vendor platforms; they are classic social engineering and distribution techniques…
SoFi confirms third-party data breach at Hong Kong subsidiary

Jun 9, 2026 12:42 AM

Tags: access, breach, data, data-breach, hacker

SoFi Hong Kong is warning that it suffered a data breach after hackers gained access to a database at a third-party vendor containing customer information. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sofi-confirms-third-party-data-breach-at-hong-kong-subsidiary/
New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Jun 8, 2026 11:43 PM

Tags: attack, hacker, malware, pypi

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud supply-chain attack that delivered malware designed to steal developer secrets. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-shai-hulud-attack-trojanizes-19-science-focused-pypi-packages/
Iran Signed a Ceasefire, Its Hackers Didn’t

Jun 8, 2026 10:42 PM

Tags: hacker, international, iran

An extension of the Geneva Conventions could impose restrictions on cyberwarfare under ceasefire conditions and close a major loophole in international conflict. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/iran-signed-ceasefire-hackers
Hackers Clone Ghidra, dnSpy and Other Tool Sites to Spread Malware

Jun 8, 2026 7:42 PM

Tags: crypto, hacker, malware, tool

Hackers are cloning Ghidra, dnSpy, ILSpy and other free tool sites to spread Malware like RemusStealer, crypto clippers and loaders through fake downloads. First seen on hackread.com Jump to article: hackread.com/hackers-clone-ghidra-dnspy-tool-sites-spread-malware/
Critical UniFi OS bug lets hackers gain root without authentication

Jun 8, 2026 6:42 PM

Tags: authentication, hacker, vulnerability

Attackers can chain three already fixed vulnerabilities in the Ubiquiti UniFi OS server to execute remote code with root privileges and without authentication. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-unifi-os-bug-lets-hackers-gain-root-without-authentication/
Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access

Jun 8, 2026 5:42 PM

Tags: access, bug-bounty, cve, exploit, flaw, hacker, wordpress

Hackers exploit CVE-2026-3300 in Everest Forms Pro to inject PHP via form fields, creating rogue admin accounts. 29,300 attempts blocked. Researcher h0xilo submitted a flaw in Everest Forms Pro for WordPress, tracked as CVE-2026-3300, to Wordfence’s bug bounty program and earned $325 for it. WPEverest patched the flaw on March 18. Wordfence published a full…
North Korean Hackers Use Fake Coding Tasks to Steal Crypto

Jun 8, 2026 5:42 PM

Tags: crypto, hacker, north-korea

North Korean actor UNK_DeadDrop targeted developers with fake coding tasks to steal crypto First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korean-hackers-developers/
Hackers used Meta’s AI support system to hijack over 20,000 Instagram accounts

Jun 8, 2026 4:42 PM

Tags: ai, exploit, flaw, hacker

Meta has revealed that attackers hijacked 20,225 Instagram accounts by exploiting a flaw in the company’s AI-assisted account recovery system. According to the company, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/08/instagram-ai-support-vulnerability-account-takeovers/
Hackers Exploit Claude Code MCP Traffic to Hijack OAuth Authentication Tokens

Jun 8, 2026 8:42 AM

Tags: access, attack, authentication, cyber, exploit, hacker, saas, threat

Threat researchers have uncovered a novel man-in-the-middle (MitM) attack chain targeting Anthropic’s Claude Code ecosystem, where adversaries hijack Model Context Protocol (MCP) traffic to steal OAuth authentication tokens and persist access to enterprise SaaS platforms. The technique, detailed by Mitiga, abuses weak protections around the local Claude Code configuration file (~/.claude.json), effectively turning it into…
Hackers Exploit 2026 FIFA World Cup With Phishing and Ticket Scams

Jun 8, 2026 7:43 AM

Tags: cyber, cybercrime, exploit, fraud, hacker, phishing, risk, scam

Cybercriminals are already turning the 2026 FIFA World Cup into a fraud opportunity, using phishing pages, fake online stores, and ticket scams to steal money and personal data. The risk is rising because the tournament will attract huge global demand, fast purchases, and buyers who may act quickly before checking whether a site is real.…
Hacker stehlen verschlüsselte Passwortmanager-Tresore: Warum die Logins der User trotzdem sicher sind

Jun 7, 2026 10:42 PM

Tags: hacker, login

First seen on t3n.de Jump to article: t3n.de/news/hacker-stehlen-verschluesselte-passwortmanager-tresore-1746161/
Critical Everest Forms Pro flaw exploited to take over WordPress sites

Jun 6, 2026 4:42 PM

Tags: control, exploit, flaw, hacker, vulnerability, wordpress

Hackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin, which lets them take complete control of a WordPress website. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-everest-forms-pro-flaw-exploited-to-take-over-wordpress-sites/
Chinesische Hacker-Gruppe TA4922 steigert Angriffstempo auf Deutschland

Jun 6, 2026 1:43 PM

Tags: ai, cyberattack, germany, hacker, phishing

Die chinesischsprachige Hacker-Gruppe TA4922 weitet ihre Angriffe massiv auf Europa aus und nutzt dafür KI-generierte Phishing-Kampagnen. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/chinesische-hacker-gruppe-ta4922