Category: TheHackerNews

Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens
26
Feb
2026

Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens

Ravie LakshmananFeb 26, 2026Malware / Software Security Cybersecurity researchers have disclosed details of a new malicious package discovered on the…

Share: X : Malicious StripeApi NuGet Package Mimicked Official Library and Stole API TokensFacebook : Malicious StripeApi NuGet Package Mimicked Official Library and Stole API TokensLinkedin : Malicious StripeApi NuGet Package Mimicked Official Library and Stole API TokensReddit : Malicious StripeApi NuGet Package Mimicked Official Library and Stole API TokensTelegram : Malicious StripeApi NuGet Package Mimicked Official Library and Stole API TokensWhatsApp : Malicious StripeApi NuGet Package Mimicked Official Library and Stole API TokensEmail : Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens
Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware
26
Feb
2026

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

A “coordinated developer-targeting campaign” is using malicious repositories disguised as legitimate Next.js projects and technical assessments to trick victims into…

Share: X : Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory MalwareFacebook : Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory MalwareLinkedin : Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory MalwareReddit : Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory MalwareTelegram : Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory MalwareWhatsApp : Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory MalwareEmail : Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware
Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access
26
Feb
2026

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

Ravie LakshmananFeb 26, 2026Vulnerability / Network Security A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart)…

Share: X : Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin AccessFacebook : Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin AccessLinkedin : Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin AccessReddit : Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin AccessTelegram : Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin AccessWhatsApp : Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin AccessEmail : Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access
Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries
25
Feb
2026

Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries

Ravie LakshmananFeb 25, 2026Cyber Espionage / Network Security Google on Wednesday disclosed that it worked with industry partners to disrupt…

Share: X : Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 CountriesFacebook : Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 CountriesLinkedin : Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 CountriesReddit : Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 CountriesTelegram : Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 CountriesWhatsApp : Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 CountriesEmail : Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries
Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration
25
Feb
2026

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Ravie LakshmananFeb 25, 2026Artificial Intelligence / Vulnerability Cybersecurity researchers have disclosed multiple security vulnerabilities in Anthropic’s Claude Code, an artificial…

Share: X : Claude Code Flaws Allow Remote Code Execution and API Key ExfiltrationFacebook : Claude Code Flaws Allow Remote Code Execution and API Key ExfiltrationLinkedin : Claude Code Flaws Allow Remote Code Execution and API Key ExfiltrationReddit : Claude Code Flaws Allow Remote Code Execution and API Key ExfiltrationTelegram : Claude Code Flaws Allow Remote Code Execution and API Key ExfiltrationWhatsApp : Claude Code Flaws Allow Remote Code Execution and API Key ExfiltrationEmail : Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration
Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing It
25
Feb
2026

Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing It

Triage is supposed to make things simpler. In a lot of teams, it does the opposite. When you can’t reach…

Share: X : Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing ItFacebook : Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing ItLinkedin : Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing ItReddit : Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing ItTelegram : Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing ItWhatsApp : Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing ItEmail : Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing It
SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks
25
Feb
2026

SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks

Ravie LakshmananFeb 25, 2026Social Engineering / Cloud Security The notorious cybercrime collective known as Scattered LAPSUS$ Hunters (SLH) has been…

Share: X : SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing AttacksFacebook : SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing AttacksLinkedin : SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing AttacksReddit : SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing AttacksTelegram : SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing AttacksWhatsApp : SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing AttacksEmail : SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks
Package Dropped Malware
25
Feb
2026

Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware

Ravie LakshmananFeb 25, 2026Cybersecurity / Malware Cybersecurity researchers have discovered four malicious NuGet packages that are designed to target ASP.NET…

Share: X : Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped MalwareFacebook : Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped MalwareLinkedin : Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped MalwareReddit : Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped MalwareTelegram : Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped MalwareWhatsApp : Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped MalwareEmail : Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware
National Security at Risk
25
Feb
2026

Manual Processes Are Putting National Security at Risk

Why automating sensitive data transfers is now a mission-critical priority More than half of national security organizations still rely on…

Share: X : Manual Processes Are Putting National Security at RiskFacebook : Manual Processes Are Putting National Security at RiskLinkedin : Manual Processes Are Putting National Security at RiskReddit : Manual Processes Are Putting National Security at RiskTelegram : Manual Processes Are Putting National Security at RiskWhatsApp : Manual Processes Are Putting National Security at RiskEmail : Manual Processes Are Putting National Security at Risk
Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian Broker
25
Feb
2026

Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian Broker

Ravie LakshmananFeb 25, 2026 Zero Day / National Security A 39-year-old Australian national who was previously employed at U.S. defense…

Share: X : Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian BrokerFacebook : Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian BrokerLinkedin : Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian BrokerReddit : Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian BrokerTelegram : Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian BrokerWhatsApp : Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian BrokerEmail : Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian Broker
SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution
25
Feb
2026

SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution

Ravie LakshmananFeb 25, 2026Vulnerability / Windows Security SolarWinds has released updates to address four critical security flaws in its Serv-U…

Share: X : SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code ExecutionFacebook : SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code ExecutionLinkedin : SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code ExecutionReddit : SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code ExecutionTelegram : SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code ExecutionWhatsApp : SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code ExecutionEmail : SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution
CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability
25
Feb
2026

CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability

Ravie LakshmananFeb 25, 2026Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently…

Share: X : CISA Confirms Active Exploitation of FileZen CVE-2026-25108 VulnerabilityFacebook : CISA Confirms Active Exploitation of FileZen CVE-2026-25108 VulnerabilityLinkedin : CISA Confirms Active Exploitation of FileZen CVE-2026-25108 VulnerabilityReddit : CISA Confirms Active Exploitation of FileZen CVE-2026-25108 VulnerabilityTelegram : CISA Confirms Active Exploitation of FileZen CVE-2026-25108 VulnerabilityWhatsApp : CISA Confirms Active Exploitation of FileZen CVE-2026-25108 VulnerabilityEmail : CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability