IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks Multiple software supply chain attacks have hit the npm ecosystem, with threat actors using both... 2026-6-5 18:5:30 | 阅读: 2 | 收藏 | The Hacker News - thehackernews.com github miasma malicious worm security

Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps Spyware / Mobile SecurityArabic-speaking users have emerged as the target of a new Android spyware... 2026-6-5 14:53:40 | 阅读: 3 | 收藏 | The Hacker News - thehackernews.com govlens spyware eset speaking arabic

New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework Cyber Espionage / Threat IntelligenceCybersecurity researchers have discovered a previously unrepo... 2026-6-5 12:33:38 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com shells attacker reliaquest espionage 0048

Only 10% of SOCs Say They’re Getting Excellent Value From AI. Here’s What the Second Wave Has to Deliver Eighteen months ago, the AI SOC was a marketing line. Today it's a budget item. The category has cr... 2026-6-5 11:20:0 | 阅读: 8 | 收藏 | The Hacker News - thehackernews.com socs wave stages agentic 2026

Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites Threat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress pl... 2026-6-5 08:38:59 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com stripe skimmer php security attacker

FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins Security researchers and the FBI are warning that a wave of FIFA-themed fraud is already hitting Wo... 2026-6-5 07:1:41 | 阅读: 18 | 收藏 | The Hacker News - thehackernews.com fifa ib facebook lookalike themed

PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network Threat Intelligence / Cloud SecurityThe threat actor known as PCPJack has hijacked cloud servers a... 2026-6-5 05:34:19 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com proxy c2 chisel cloud sliver

Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public Vulnerability / Network SecurityCisco has patched a bug in Unified Communications Manager that let... 2026-6-4 16:55:51 | 阅读: 20 | 收藏 | The Hacker News - thehackernews.com unified webdialer 2026 exploited network

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories Vulnerability / AI SecurityA security researcher found a flaw in Anthropic's Claude Code GitHub A... 2026-6-4 15:15:26 | 阅读: 27 | 收藏 | The Hacker News - thehackernews.com claude anthropic github ryotak attacker

Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It Artificial Intelligence / Defense TechnologyOver the past several weeks, the cybersecurity commun... 2026-6-4 15:10:0 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com mission security securely classified operational

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories It got stupid again.The internet still feels held together with tape. Bad plugins, old bugs, fake to... 2026-6-4 14:0:49 | 阅读: 26 | 收藏 | The Hacker News - thehackernews.com security 2026 attackers remote attacker

China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target Euro... 2026-6-4 12:22:25 | 阅读: 22 | 收藏 | The Hacker News - thehackernews.com 2026 lures atlas ta4922

FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads Malvertising / Browser SecurityCybersecurity researchers have shed light on a macOS malvertising c... 2026-6-4 11:19:53 | 阅读: 24 | 收藏 | The Hacker News - thehackernews.com malicious cri attackers

Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS Cybersecurity researchers have flagged a large-scale operation that impersonates open-source and fr... 2026-6-4 09:51:28 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com tds download sessiongate analysis stealer

Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months Cyber Espionage / MalwareUnknown attackers spent at least five months inside the Outlook mailbox o... 2026-6-4 09:33:57 | 阅读: 20 | 收藏 | The Hacker News - thehackernews.com attacker mailbox dropbox exchange symantec

CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog Web Security / VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on... 2026-6-4 07:19:33 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com php cachewarmer 2026 serialized remote

DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets Cryptocurrency / Law EnforcementThe U.S. Department of Justice (DoJ) on Wednesday announced the re... 2026-6-4 06:6:25 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com police americans compounds investment criminal

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android Vulnerability / Artificial IntelligenceA single poisoned notification from WhatsApp, Slack, SMS,... 2026-6-3 19:11:15 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com gemini yair victim safebreach memory

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT Malware / Microsoft DefenderCybersecurity researchers have flagged a new malspam campaign that mak... 2026-6-3 16:29:16 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com victim loader trojan microsoft security

Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag Vulnerability / Mobile SecurityA development flag left switched on in production builds of several... 2026-6-3 14:56:35 | 阅读: 2 | 收藏 | The Hacker News - thehackernews.com microsoft powerpoint enclave copilot 2026