TheHackerNews

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

Ravie LakshmananJan 27, 2026Vulnerability / Cloud Security A critical security flaw has been disclosed in Grist‑Core, an open-source, self-hosted version of the Grist relational spreadsheet-database,…

January 27, 2026 Cybernoz 3 min read

TheHackerNews

Prioritization, Validation, and Outcomes That Matter

The Hacker NewsJan 27, 2026Attack Surface Management / Cyber Risk Cybersecurity teams increasingly want to move beyond looking at threats and vulnerabilities in isolation. It’s…

January 27, 2026 Cybernoz 4 min read

TheHackerNews

Microsoft Office Zero-Day (CVE-2026-21509) – Emergency Patch Issued for Active Exploitation

Ravie LakshmananJan 27, 2026Zero-Day / Vulnerability Microsoft on Monday issued out-of-band security patches for a high-severity Microsoft Office zero-day vulnerability exploited in attacks. The vulnerability,…

January 27, 2026 Cybernoz 2 min read

TheHackerNews

Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware

Ravie LakshmananJan 26, 2026Cyber Espionage / Malware Cybersecurity researchers have discovered an ongoing campaign that’s targeting Indian users with a multi-stage backdoor as part of…

January 26, 2026 Cybernoz 3 min read

TheHackerNews

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Ravie LakshmananJan 26, 2026AI Security / Vulnerability Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial…

January 26, 2026 Cybernoz 3 min read

TheHackerNews

Winning Against AI-Based Attacks Requires a Combined Defensive Approach

The Hacker NewsJan 26, 2026Endpoint Security / Artificial Intelligence If there’s a constant in cybersecurity, it’s that adversaries are always innovating. The rise of offensive…

January 26, 2026 Cybernoz 5 min read

TheHackerNews

Konni Hackers Deploy AI-Generated PowerShell Backdoor Against Blockchain Developers

Ravie LakshmananJan 26, 2026Malware / Endpoint Security The North Korean threat actor known as Konni has been observed using PowerShell malware generated using artificial intelligence…

January 26, 2026 Cybernoz 3 min read

TheHackerNews

Multi-Stage Phishing Campaign Targets Russia with Amnesia RAT and Ransomware

A new multi-stage phishing campaign has been observed targeting users in Russia with ransomware and a remote access trojan called Amnesia RAT. “The attack begins…

January 24, 2026 Cybernoz 5 min read

TheHackerNews

CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog

Ravie LakshmananJan 24, 2026Vulnerability / Enterprise Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw affecting Broadcom VMware…

January 24, 2026 Cybernoz 2 min read

TheHackerNews

Who Approved This Agent? Rethinking Access, Accountability, and Risk in the Age of AI Agents

AI agents are accelerating how work gets done. They schedule meetings, access data, trigger workflows, write code, and take action in real time, pushing productivity…

January 24, 2026 Cybernoz 6 min read

TheHackerNews

New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector

Ravie LakshmananJan 24, 2026Malware / Critical Infrastructure The Russian nation-state hacking group known as Sandworm has been attributed to what has been described as the…

January 24, 2026 Cybernoz 2 min read

TheHackerNews

CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities

Ravie LakshmananJan 23, 2026Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added four security flaws to its Known Exploited…

January 23, 2026 Cybernoz 2 min read