Category: TheHackerNews

New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft
16
Feb
2026

New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft

Cybersecurity researchers have disclosed details of a new mobile spyware platform dubbed ZeroDayRAT that’s being advertised on Telegram as a…

Share: X : New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data TheftFacebook : New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data TheftLinkedin : New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data TheftReddit : New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data TheftTelegram : New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data TheftWhatsApp : New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data TheftEmail : New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft
New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch Released
16
Feb
2026

New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch Released

Ravie LakshmananFeb 16, 2026Zero-Day / Browser Security Google on Friday released security updates for its Chrome browser to address a…

Share: X : New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch ReleasedFacebook : New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch ReleasedLinkedin : New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch ReleasedReddit : New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch ReleasedTelegram : New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch ReleasedWhatsApp : New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch ReleasedEmail : New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch Released
Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging
15
Feb
2026

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting…

Share: X : Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware StagingFacebook : Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware StagingLinkedin : Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware StagingReddit : Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware StagingTelegram : Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware StagingWhatsApp : Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware StagingEmail : Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging
Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations
13
Feb
2026

Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations

Ravie LakshmananFeb 13, 2026Malware / Critical Infrastructure Several state-sponsored actors, hacktivist entities, and criminal groups from China, Iran, North Korea,…

Share: X : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber OperationsFacebook : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber OperationsLinkedin : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber OperationsReddit : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber OperationsTelegram : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber OperationsWhatsApp : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber OperationsEmail : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations
Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs
13
Feb
2026

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

Ravie LakshmananFeb 13, 2026Threat Intelligence / Malware A previously undocumented threat actor has been attributed to attacks targeting Ukrainian organizations…

Share: X : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian OrgsFacebook : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian OrgsLinkedin : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian OrgsReddit : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian OrgsTelegram : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian OrgsWhatsApp : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian OrgsEmail : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs
UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors
13
Feb
2026

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

Ravie LakshmananFeb 13, 2026Cloud Security / Cyber Espionage A previously unknown threat actor tracked as UAT-9921 has been observed leveraging…

Share: X : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial SectorsFacebook : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial SectorsLinkedin : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial SectorsReddit : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial SectorsTelegram : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial SectorsWhatsApp : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial SectorsEmail : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors
Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History
13
Feb
2026

Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History

Cybersecurity researchers have discovered a malicious Google Chrome extension that’s designed to steal data associated with Meta Business Suite and…

Share: X : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing HistoryFacebook : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing HistoryLinkedin : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing HistoryReddit : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing HistoryTelegram : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing HistoryWhatsApp : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing HistoryEmail : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History
npm’s Update to Harden Their Supply Chain, and Points to Consider
13
Feb
2026

npm’s Update to Harden Their Supply Chain, and Points to Consider

The Hacker NewsFeb 13, 2026Supply Chain Security / DevSecOps In December 2025, in response to the Sha1-Hulud incident, npm completed…

Share: X : npm’s Update to Harden Their Supply Chain, and Points to ConsiderFacebook : npm’s Update to Harden Their Supply Chain, and Points to ConsiderLinkedin : npm’s Update to Harden Their Supply Chain, and Points to ConsiderReddit : npm’s Update to Harden Their Supply Chain, and Points to ConsiderTelegram : npm’s Update to Harden Their Supply Chain, and Points to ConsiderWhatsApp : npm’s Update to Harden Their Supply Chain, and Points to ConsiderEmail : npm’s Update to Harden Their Supply Chain, and Points to Consider
Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability
13
Feb
2026

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Threat actors have started to exploit a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote…

Share: X : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 VulnerabilityFacebook : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 VulnerabilityLinkedin : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 VulnerabilityReddit : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 VulnerabilityTelegram : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 VulnerabilityWhatsApp : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 VulnerabilityEmail : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability
Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
12
Feb
2026

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

Cybersecurity researchers have discovered a fresh set of malicious packages across npm and the Python Package Index (PyPI) repository linked…

Share: X : Lazarus Campaign Plants Malicious Packages in npm and PyPI EcosystemsFacebook : Lazarus Campaign Plants Malicious Packages in npm and PyPI EcosystemsLinkedin : Lazarus Campaign Plants Malicious Packages in npm and PyPI EcosystemsReddit : Lazarus Campaign Plants Malicious Packages in npm and PyPI EcosystemsTelegram : Lazarus Campaign Plants Malicious Packages in npm and PyPI EcosystemsWhatsApp : Lazarus Campaign Plants Malicious Packages in npm and PyPI EcosystemsEmail : Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support
12
Feb
2026

Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support

Ravie LakshmananFeb 12, 2026Cyber Espionage / Artificial Intelligence Google on Thursday said it observed the North Korea-linked threat actor known…

Share: X : Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack SupportFacebook : Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack SupportLinkedin : Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack SupportReddit : Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack SupportTelegram : Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack SupportWhatsApp : Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack SupportEmail : Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support
Why 84% of Security Programs Are Falling Behind
12
Feb
2026

Why 84% of Security Programs Are Falling Behind

The Hacker NewsFeb 12, 2026Enterprise Security / Breach Prevention A new 2026 market intelligence study of 128 enterprise security decision-makers…

Share: X : Why 84% of Security Programs Are Falling BehindFacebook : Why 84% of Security Programs Are Falling BehindLinkedin : Why 84% of Security Programs Are Falling BehindReddit : Why 84% of Security Programs Are Falling BehindTelegram : Why 84% of Security Programs Are Falling BehindWhatsApp : Why 84% of Security Programs Are Falling BehindEmail : Why 84% of Security Programs Are Falling Behind