Category: TheHackerNews

Disable Generative AI Features
03
Feb
2026

Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox

Ravie LakshmananFeb 03, 2026Artificial Intelligence / Privacy Mozilla on Monday announced a new controls section in its Firefox desktop browser…

Share: X : Mozilla Adds One-Click Option to Disable Generative AI Features in FirefoxFacebook : Mozilla Adds One-Click Option to Disable Generative AI Features in FirefoxLinkedin : Mozilla Adds One-Click Option to Disable Generative AI Features in FirefoxReddit : Mozilla Adds One-Click Option to Disable Generative AI Features in FirefoxTelegram : Mozilla Adds One-Click Option to Disable Generative AI Features in FirefoxWhatsApp : Mozilla Adds One-Click Option to Disable Generative AI Features in FirefoxEmail : Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox
Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group
03
Feb
2026

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Ravie LakshmananFeb 03, 2026Malware / Open Source A China-linked threat actor known as Lotus Blossom has been attributed with medium…

Share: X : Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking GroupFacebook : Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking GroupLinkedin : Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking GroupReddit : Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking GroupTelegram : Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking GroupWhatsApp : Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking GroupEmail : Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group
Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users
02
Feb
2026

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

A security audit of 2,857 skills on ClawHub has found 341 malicious skills across multiple campaigns, according to new findings…

Share: X : Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw UsersFacebook : Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw UsersLinkedin : Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw UsersReddit : Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw UsersTelegram : Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw UsersWhatsApp : Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw UsersEmail : Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users
OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link
02
Feb
2026

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Ravie LakshmananFeb 02, 2026Vulnerability / Artificial Intelligence A high-severity security flaw has been disclosed in OpenClaw (formerly referred to as…

Share: X : OpenClaw Bug Enables One-Click Remote Code Execution via Malicious LinkFacebook : OpenClaw Bug Enables One-Click Remote Code Execution via Malicious LinkLinkedin : OpenClaw Bug Enables One-Click Remote Code Execution via Malicious LinkReddit : OpenClaw Bug Enables One-Click Remote Code Execution via Malicious LinkTelegram : OpenClaw Bug Enables One-Click Remote Code Execution via Malicious LinkWhatsApp : OpenClaw Bug Enables One-Click Remote Code Execution via Malicious LinkEmail : OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link
Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos
02
Feb
2026

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos

Ravie LakshmananFeb 02, 2026Kerberos / Enterprise Security Microsoft has announced a three-phase approach to phase out New Technology LAN Manager…

Share: X : Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to KerberosFacebook : Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to KerberosLinkedin : Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to KerberosReddit : Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to KerberosTelegram : Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to KerberosWhatsApp : Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to KerberosEmail : Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos
Securing the Mid-Market Across the Complete Threat Lifecycle
02
Feb
2026

Securing the Mid-Market Across the Complete Threat Lifecycle

The Hacker NewsFeb 02, 2026Threat Detection / Endpoint Security For mid-market organizations, cybersecurity is a constant balancing act. Proactive, preventative…

Share: X : Securing the Mid-Market Across the Complete Threat LifecycleFacebook : Securing the Mid-Market Across the Complete Threat LifecycleLinkedin : Securing the Mid-Market Across the Complete Threat LifecycleReddit : Securing the Mid-Market Across the Complete Threat LifecycleTelegram : Securing the Mid-Market Across the Complete Threat LifecycleWhatsApp : Securing the Mid-Market Across the Complete Threat LifecycleEmail : Securing the Mid-Market Across the Complete Threat Lifecycle
Notepad Hacked
02
Feb
2026

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

Ravie LakshmananFeb 02, 2026Threat Intelligence / Malware The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility’s update…

Share: X : Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select UsersFacebook : Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select UsersLinkedin : Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select UsersReddit : Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select UsersTelegram : Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select UsersWhatsApp : Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select UsersEmail : Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users
eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware
02
Feb
2026

eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware

The update infrastructure for eScan antivirus, a security solution developed by Indian cybersecurity company MicroWorld Technologies, has been compromised by…

Share: X : eScan Antivirus Update Servers Compromised to Deliver Multi-Stage MalwareFacebook : eScan Antivirus Update Servers Compromised to Deliver Multi-Stage MalwareLinkedin : eScan Antivirus Update Servers Compromised to Deliver Multi-Stage MalwareReddit : eScan Antivirus Update Servers Compromised to Deliver Multi-Stage MalwareTelegram : eScan Antivirus Update Servers Compromised to Deliver Multi-Stage MalwareWhatsApp : eScan Antivirus Update Servers Compromised to Deliver Multi-Stage MalwareEmail : eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware
Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm
02
Feb
2026

Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm

Ravie LakshmananFeb 02, 2026Developer Tools / Malware Cybersecurity researchers have disclosed details of a supply chain attack targeting the Open…

Share: X : Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWormFacebook : Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWormLinkedin : Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWormReddit : Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWormTelegram : Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWormWhatsApp : Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWormEmail : Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm
Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists
31
Jan
2026

Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists

A Farsi-speaking threat actor aligned with Iranian state interests is suspected to be behind a new campaign targeting non-governmental organizations…

Share: X : Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and ActivistsFacebook : Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and ActivistsLinkedin : Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and ActivistsReddit : Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and ActivistsTelegram : Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and ActivistsWhatsApp : Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and ActivistsEmail : Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists
Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms
31
Jan
2026

Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms

Ravie LakshmananJan 31, 2026Social Engineering / SaaS Security Google-owned Mandiant on Friday said it identified an “expansion in threat activity”…

Share: X : Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS PlatformsFacebook : Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS PlatformsLinkedin : Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS PlatformsReddit : Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS PlatformsTelegram : Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS PlatformsWhatsApp : Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS PlatformsEmail : Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms
CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar Farms
31
Jan
2026

CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar Farms

Ravie LakshmananJan 31, 2026Network Security / SCADA CERT Polska, the Polish computer emergency response team, revealed that coordinated cyber attacks…

Share: X : CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar FarmsFacebook : CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar FarmsLinkedin : CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar FarmsReddit : CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar FarmsTelegram : CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar FarmsWhatsApp : CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar FarmsEmail : CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar Farms