ADT Confirms Data Breach Following ShinyHunters Data Leak Claim
Home security giant ADT Inc. has confirmed a data breach after the notorious threat group ShinyHunters claimed to have stolen over 10 million records and…
Category: CyberSecurityNews
Hackers Use Fake CAPTCHA Pages to Trigger Costly International SMS Fraud
Most internet users are familiar with CAPTCHA tests, simple challenges like selecting traffic lights or typing distorted letters to confirm they are human. But cybercriminals…
Claude Desktop Reportedly Adds Browser Access Bridge to Multiple Chromium-Based Browsers
A recent technical audit by privacy researcher Alexander Hanff has revealed that Anthropic’s Claude Desktop application for macOS silently installs a Native Messaging bridge into…
Void Dokkaebi Hackers Use Fake Job Interviews to Spread Malware via Code Repositories
A North Korea-linked hacking group known as Void Dokkaebi, also tracked as Famous Chollima, is running a campaign that tricks software developers into installing malware…
Hackers Use Telegram Bots to Track 900+ Successful React2Shell Exploits
A newly exposed server has revealed how a threat actor used automated tools, AI assistance, and Telegram bots to silently hack into more than 900…
Hackers Leverage Microsoft Teams to Breach Organizations Posing as IT Helpdesk Staff
A newly identified threat group, UNC6692, has been caught running a sophisticated multistage intrusion campaign that uses Microsoft Teams impersonation, a custom modular malware suite,…
North Korean Hackers Use Fake IT Worker Scheme to Infiltrate Companies and Evade Sanctions
North Korea has been running one of the most quietly effective cyber fraud operations in recent years. State-sponsored operatives working for the Pyongyang regime have…
AI-Assisted Lazarus Campaign Targets Developers With Backdoored Coding Challenges
A North Korean state-sponsored threat group is running an active campaign that tricks software developers into installing malware through fake job interviews and rigged coding…
Fake TradingView AI Agent Site is Delivering Needle Stealer Malware via Fake TradingClaw
A new malware campaign is tricking traders into downloading a data-stealing tool by impersonating the popular financial platform TradingView. Attackers set up a fake website…
Critical Pack2TheRoot Vulnerability Let Attackers Gain Root Access or Compromise the System
A high-severity privilege escalation vulnerability, dubbed Pack2TheRoot (CVE-2026-41651, CVSS 3.1: 8.8), has been publicly disclosed by Deutsche Telekom’s Red Team, affecting multiple major Linux distributions…
Checkmarx KICS Official Docker Repo Compromised to Inject Malicious Code
A significant supply chain attack targeting the official checkmarx/kics Docker Hub repository, where threat actors pushed trojanized images capable of harvesting and exfiltrating sensitive developer…
109 Fake GitHub Repositories Used to Deliver SmartLoader and StealC Malware
A large-scale malware distribution campaign has been uncovered involving 109 fake GitHub repositories that were used to trick users into downloading two dangerous malware tools…