Tag: hacker

ClickFix-Angriffsvariante ConsentFix: So tricksen Hacker Microsoft-Konten aus

Jan 12, 2026 3:02 PM

Tags: hacker, mfa, microsoft

Durch diesen Trick erhalten die Angreifer den OAuth-Schlüssel und können eine Verbindung zwischen ihrem eigenen System und dem Microsoft-Konto des Opfers herstellen ohne Passwortdiebstahl oder Umgehung der Multi-Faktor-Authentifizierung. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/clickfix-angriffsvariante-consentfix-so-tricksen-hacker-microsoft-konten-aus/a43332/
CISOs’ top 10 cybersecurity priorities for 2026

Jan 12, 2026 9:01 AM

Tags: access, ai, attack, authentication, business, ciso, cloud, compliance, control, corporate, cyber, cyberattack, cybersecurity, data, deep-fake, defense, gartner, google, hacker, identity, intelligence, international, leak, monitoring, network, office, passkey, resilience, risk, risk-management, service, software, strategy, supply-chain, technology, threat, tool, training, unauthorized, zero-trust

Prepping for AI-enabled attacks: Although conventional tasks dominate the CISO priorities in the Foundry survey, interviews and other research show that AI-related issues are also high on the CISO priority list.For example, 53% of security leaders ranked AI-enabled cyber threats as a top-three organizational risk in a global survey conducted by Boston Consulting Group. BCG…
CISOs’ top 10 cybersecurity priorities for 2026

Jan 12, 2026 9:01 AM

Tags: access, ai, attack, authentication, business, ciso, cloud, compliance, control, corporate, cyber, cyberattack, cybersecurity, data, deep-fake, defense, gartner, google, hacker, identity, intelligence, international, leak, monitoring, network, office, passkey, resilience, risk, risk-management, service, software, strategy, supply-chain, technology, threat, tool, training, unauthorized, zero-trust

Prepping for AI-enabled attacks: Although conventional tasks dominate the CISO priorities in the Foundry survey, interviews and other research show that AI-related issues are also high on the CISO priority list.For example, 53% of security leaders ranked AI-enabled cyber threats as a top-three organizational risk in a global survey conducted by Boston Consulting Group. BCG…
Salt Typhoon Hackers Hit Congressional Emails in New Breach

Jan 10, 2026 12:02 AM

Tags: breach, china, cyber, email, espionage, hacker, military, network

Staff Working on China, Intel, Military Oversight Targeted in Espionage Operation. U.S. officials are probing a suspected Chinese cyber campaign tied to Salt Typhoon that breached congressional staff email systems supporting national security committees, exposing sensitive discussions and raising concerns about unclassified federal network defenses. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/salt-typhoon-hackers-hit-congressional-emails-in-new-breach-a-30484
How hackers are fighting back against ICE surveillance tech

Jan 9, 2026 11:02 PM

Tags: government, hacker

Remember when government agents didn’t wear masks? First seen on theregister.com Jump to article: www.theregister.com/2026/01/09/hackers_fight_back_against_ice/
MAESTRO Toolkit Exploiting VMware VM Escape Vulnerabilities

Jan 9, 2026 10:01 PM

Tags: attack, breach, cybersecurity, exploit, hacker, vmware, vulnerability

Cybersecurity researchers from Huntress detail a major VM Escape attack where hackers took over host servers. Using a secret toolkit called MAESTRO, the attackers stayed hidden for over a year. Read the exclusive details on how this breach was stopped and how to protect your network. First seen on hackread.com Jump to article: hackread.com/maestro-toolkit-vmware-vm-escape-vulnerabilities/
Hackers target misconfigured proxies to access paid LLM services

Jan 9, 2026 10:01 PM

Tags: access, hacker, LLM, service, threat

Threat actors are systematically hunting for misconfigured proxy servers that could provide access to commercial large language model (LLM) services. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-target-misconfigured-proxies-to-access-paid-llm-services/
China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Jan 9, 2026 9:02 PM

Tags: access, china, exploit, hacker, ransomware, threat, vmware, vpn, zero-day

Chinese-speaking threat actors are suspected to have leveraged a compromised SonicWall VPN appliance as an initial access vector to deploy a VMware ESXi exploit that may have been developed as far back as February 2024.Cybersecurity firm Huntress, which observed the activity in December 2025 and stopped it before it could progress to the final stage,…
At least $26 million in crypto stolen from Truebit platform as crypto crime landscape evolves

Jan 9, 2026 6:01 PM

Tags: breach, crime, crypto, hacker, theft

The theft continues a trend from the last two years, when hackers stole billions worth of cryptocurrency from both platforms and asset owners. First seen on therecord.media Jump to article: therecord.media/26-million-in-crypto-stolen-truebit
Hacker Behind Wired.com Leak Now Selling Full 40M CondÃ© Nast Records

Jan 9, 2026 5:01 PM

Tags: data, hacker, leak

A hacker claims to be selling nearly 40 million CondÃ© Nast user records after leaking Wired.com data, with multiple major brands allegedly affected. First seen on hackread.com Jump to article: hackread.com/wired-com-hacker-data-leak-conde-nast-records/
What Is Penetration Testing: Tools, Process, and Importance

Jan 9, 2026 10:01 AM

Tags: hacker, penetration-testing, tool

Web applications, databases, sub-domains, DNS configuration, and public_html are some of the online places where you can never allow a hacker in. If they do, sometimes forcefully, a full account takeover is just a matter of time. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/what-is-penetration-testing/
What Is Penetration Testing: Tools, Process, and Importance

Jan 9, 2026 10:01 AM

Tags: hacker, penetration-testing, tool

Web applications, databases, sub-domains, DNS configuration, and public_html are some of the online places where you can never allow a hacker in. If they do, sometimes forcefully, a full account takeover is just a matter of time. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/what-is-penetration-testing/
FBI Warns North Korean Hackers Using Malicious QR Codes in Spear-Phishing

Jan 9, 2026 9:01 AM

Tags: advisory, government, hacker, malicious, north-korea, phishing, qr, spear-phishing, threat

The U.S. Federal Bureau of Investigation (FBI) on Thursday released an advisory warning of North Korean state-sponsored threat actors leveraging malicious QR codes in spear-phishing campaigns targeting entities in the country.”As of 2025, Kimsuky actors have targeted think tanks, academic institutions, and both U.S. and foreign government entities with embedded malicious Quick Response (QR) First…
Chinese-speaking hackers exploited ESXi zero-days long before disclosure

Jan 9, 2026 5:01 AM

Tags: china, exploit, hacker, vmware, vpn, zero-day

Chinese-speaking attackers used a hacked SonicWall VPN to deploy ESXi zero-days that were likely exploited over a year before public disclosure. Chinese-speaking attackers were seen abusing a hacked SonicWall VPN to deliver a toolkit targeting VMware ESXi. The exploit chain included a sophisticated VM escape and appears to have been developed more than a year…
BlueDelta Espionage: Russian Hackers Abuse Free Apps to Target Energy Sector

Jan 9, 2026 5:01 AM

Tags: espionage, hacker, russia

The post BlueDelta Espionage: Russian Hackers Abuse Free Apps to Target Energy Sector appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/bluedelta-espionage-russian-hackers-abuse-free-apps-to-target-energy-sector/
New China-linked hackers breach telcos using edge device exploits

Jan 9, 2026 1:01 AM

Tags: breach, china, exploit, hacker, linux, malware, threat

A sophisticated threat actor that uses Linux-based malware to target telecommunications providers has recently broadened its operations to include organizations in Southeastern Europe. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-china-linked-hackers-breach-telcos-using-edge-device-exploits/
FBI warns about Kimsuky hackers using QR codes to phish U.S. orgs

Jan 9, 2026 1:01 AM

Tags: group, hacker, north-korea, phishing, qr

The North Korean state-sponsored hacker group Kimsuki is using malicious QR codes in spearphishing campaigns that target U.S. organizations, the Federal Bureau of Investigation warns in a flash alert. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-warns-about-kimsuky-hackers-using-qr-codes-to-phish-us-orgs/
CrowdStrike Acquires SGNL for $740 Million to Thwart AI-Powered Cyber Threats

Jan 8, 2026 10:02 PM

Tags: ai, credentials, crowdstrike, cyber, cybersecurity, defense, exploit, hacker, identity, intelligence, startup, technology, threat

CrowdStrike Inc. said Thursday it will acquire identity security startup SGNL in a deal valued at $740 million the latest move by the cybersecurity giant to fortify its defenses against increasingly sophisticated artificial intelligence (AI)-powered cyberattacks. The acquisition centers on SGNL’s continuous identity technology, designed to prevent hackers from exploiting user credentials as entry.. First…
The 2 faces of AI: How emerging models empower and endanger cybersecurity

Jan 8, 2026 8:02 PM

Tags: ai, api, attack, compliance, credentials, cyber, cybersecurity, data, deep-fake, defense, detection, endpoint, espionage, exploit, finance, flaw, framework, GDPR, google, governance, government, group, guide, hacker, HIPAA, incident response, injection, intelligence, LLM, malicious, malware, mandiant, microsoft, network, PCI, penetration-testing, privacy, risk, russia, scam, security-incident, service, social-engineering, strategy, tactics, threat, tool, vulnerability, zero-day

Self-modifying, evasive malware More recently, the researchers at Google Threat Intelligence Group (GTIG) identified a disturbing new trend: malware that uses LLMs during execution to dynamically alter its own behavior and evade detection. This is not pre-generated code, this is code that adapts mid-execution.In June 2025, GTIG identified an experimental malware called PROMPTFLUX, which connects…
The 2 faces of AI: How emerging models empower and endanger cybersecurity

Jan 8, 2026 8:02 PM

Tags: ai, api, attack, compliance, credentials, cyber, cybersecurity, data, deep-fake, defense, detection, endpoint, espionage, exploit, finance, flaw, framework, GDPR, google, governance, government, group, guide, hacker, HIPAA, incident response, injection, intelligence, LLM, malicious, malware, mandiant, microsoft, network, PCI, penetration-testing, privacy, risk, russia, scam, security-incident, service, social-engineering, strategy, tactics, threat, tool, vulnerability, zero-day

Self-modifying, evasive malware More recently, the researchers at Google Threat Intelligence Group (GTIG) identified a disturbing new trend: malware that uses LLMs during execution to dynamically alter its own behavior and evade detection. This is not pre-generated code, this is code that adapts mid-execution.In June 2025, GTIG identified an experimental malware called PROMPTFLUX, which connects…
Cryptohack Roundup: Alleged Fraud Kingpin Deported to China

Jan 8, 2026 7:02 PM

Tags: attack, breach, china, crypto, data, fraud, hacker, theft

Also: Unleash Protocol Hack, LastPass Breach Linked to Crypto Thefts. This week, an alleged fraud kingpin deported to China, Bitfinex hacker gained early release, Unleash Protocol’s $3.9M hack, TRM tied crypto thefts to the LastPass breach, Trust Wallet’s link to the Sha1-Hulud attack, Flow’s NFT loan fallout, Ledger’s data exposure and Kontigo reimbursements. First seen…
New OAuth Attack Lets Hackers Bypass Microsoft Entra Authentication and Steal Keys

Jan 8, 2026 7:02 PM

Tags: access, attack, authentication, cyber, cybersecurity, hacker, microsoft, social-engineering, threat

In a year-end tradition that has become all too familiar for cybersecurity defenders, researchers have uncovered a novel attack vector targeting Microsoft Entra ID that weaponizes legitimate OAuth 2.0 authentication flows to harvest privileged access tokens. The technique, dubbed >>ConsentFix<< by PushSecurity, represents an evolution of the ClickFix social engineering paradigm, enabling threat actors to…
Report: China Breached Email Systems Used by U.S. Congressional Staff

Jan 8, 2026 7:02 PM

Tags: china, cyber, cyberattack, email, finance, hacker, infrastructure

Beijing dismissed accusations of Chinese involvement in a significant cyberattack against United States congressional staff email systems on Thursday, characterizing the allegations as >>politically motivated disinformation.<< The denial comes after the Financial Times reported that Chinese hackers successfully compromised email infrastructure used by members of powerful House of Representatives committees, according to sources familiar with…
ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories

Jan 8, 2026 3:01 PM

Tags: cloud, flaw, hacker, Internet, iran, leak, rce, remote-code-execution, risk, scam, tool

The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere.This week’s stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old tools keep finding new ways to break in.Read on to catch up before the next wave hits. Honeypot…
Maximum Severity “Ni8mare” Bug Lets Hackers Hijack n8n Servers

Jan 8, 2026 12:01 PM

Tags: authentication, control, hacker, threat, vulnerability

A newly discovered vulnerability in authentication platform n8n could allow threat actors to take control of n8n servers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/maximum-severity-ni8mare-bug/
BlueDelta Hackers Target Microsoft OWA, Google, and Sophos VPN to Steal Credentials

Jan 8, 2026 10:01 AM

Tags: credentials, cyber, google, group, hacker, infrastructure, microsoft, russia, sophos, theft, threat, vpn

A sophisticated credential-harvesting operation conducted by BlueDelta, a Russian state-sponsored threat group linked to the GRU’s Main Directorate, targeted critical infrastructure organizations and research institutions throughout 2025, according to a comprehensive investigation by Recorded Future’s Insikt Group. The campaign, spanning February through September 2025, represents a significant evolution in the group’s persistent credential-theft operations, with…
Top cyber threats to your AI systems and infrastructure

Jan 8, 2026 9:01 AM

Tags: ai, api, attack, best-practice, business, chatgpt, ciso, cloud, cyber, cybersecurity, data, defense, detection, exploit, framework, governance, hacker, infrastructure, injection, intelligence, LLM, malicious, mitre, monitoring, open-source, RedTeam, risk, sans, service, skills, software, strategy, supply-chain, tactics, theft, threat, tool, training, unauthorized, usa, vulnerability

Data poisoning Data poisoning is a type of attack in which bad actorsmanipulate, tamper with, and pollute the data used to develop or train AI systems, including machine learning models. By corrupting the data or introducing faulty data, attackers can alter, bias, or otherwise render inaccurate a model’s performance.Imagine an attack that tells a model…
Critical jsPDF flaw lets hackers steal secrets via generated PDFs

Jan 8, 2026 12:01 AM

Tags: data, flaw, hacker, vulnerability

The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that allows an attacker to steal sensitive data from the local filesystem by including it in generated files. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-jspdf-flaw-lets-hackers-steal-secrets-via-generated-pdfs/
Attackers Exploit Zero-Day in End-of-Life D-Link Routers

Jan 8, 2026 12:01 AM

Tags: exploit, flaw, hacker, router, zero-day

Hackers are attacking a critical zero-day flaw in unsupported D-Link DSL routers to run arbitrary commands. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/attackers-exploit-zero-day-end-of-life-d-link-routers
Chinese Hackers Launch Ongoing Attacks on Taiwan’s Critical Infrastructure

Jan 7, 2026 10:02 PM

Tags: attack, china, cyber, hacker, infrastructure, threat, warfare

China’s state-sponsored cyber operations against Taiwan have intensified dramatically, with threat actors launching an average of 2.63 million intrusion attempts daily targeting critical infrastructure across nine primary sectors, according to a newly released report from Taiwan’s National Security Bureau (NSB). The NSB report documents a concerning pattern of synchronized cyber warfare operations that correlate directly…