Category: TheHackerNews

Malicious ML Models
08
Feb
2025

Malicious ML Models Found on Hugging Face Exploit “Broken” Pickle Files to Evade Detection

Feb 08, 2025Ravie LakshmananArtificial Intelligence / Supply Chain Security Cybersecurity researchers have uncovered two malicious machine learning (ML) models on…

DeepSeek App Transmits Sensitive User and Device Data Without Encryption
07
Feb
2025

DeepSeek App Transmits Sensitive User and Device Data Without Encryption

Feb 07, 2025Ravie LakshmananMobile Security / Artificial Intelligence A new audit of DeepSeek’s mobile app for the Apple iOS operating…

Trimble Cityworks Vulnerability
07
Feb
2025

CISA Warns of Active Exploits Targeting Trimble Cityworks Vulnerability

Feb 07, 2025The Hacker NewsVulnerability / Malware The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a security…

Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks
07
Feb
2025

Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks

Feb 07, 2025Ravie LakshmananCloud Security / Web Security Microsoft is warning of an insecure practice wherein software developers are incorporating…

AI-Powered Social Engineering
07
Feb
2025

AI-Powered Social Engineering: Reinvented Threats

The foundations for social engineering attacks – manipulating humans – might not have changed much over the years. It’s the…

Digital Banking Fraud
07
Feb
2025

India’s RBI Introduces Exclusive “bank.in” Domain to Combat Digital Banking Fraud

Feb 07, 2025Ravie LakshmananFinancial Security / Regulatory Compliance India’s central bank, the Reserve Bank of India (RBI), said it’s introducing…

SimpleHelp RMM Flaws
07
Feb
2025

Hackers Exploiting SimpleHelp RMM Flaws for Persistent Access and Ransomware

Feb 07, 2025Ravie LakshmananVulnerability / Threat Intelligence Threat actors have been observed exploiting recently disclosed security flaws in SimpleHelp’s Remote…

Ransomware Extortion
06
Feb
2025

Ransomware Extortion Drops to $813.5M in 2024, Down from $1.25B in 2023

Feb 06, 2025Ravie LakshmananCybercrime / Ransomware Ransomware attacks netted cybercrime groups a total of $813.5 million in 2024, a decline…

Fake Google Chrome Sites
06
Feb
2025

Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking

Feb 06, 2025Ravie LakshmananCyber Attack / Malware Bogus websites advertising Google Chrome have been used to distribute malicious installers for…

North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials
06
Feb
2025

North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials

Feb 06, 2025Ravie LakshmananThreat Intelligence / Malware The North Korea-linked nation-state hacking group known as Kimsuky has been observed conducting…

Cybersecurity Leadership
06
Feb
2025

The Evolving Role of PAM in Cybersecurity Leadership Agendas for 2025

Privileged Access Management (PAM) has emerged as a cornerstone of modern cybersecurity strategies, shifting from a technical necessity to a…

SparkCat Malware
06
Feb
2025

SparkCat Malware Uses OCR to Extract Crypto Wallet Recovery Phrases from Images

A new malware campaign dubbed SparkCat has leveraged a suit of bogus apps on both Apple’s and Google’s respective app…