News

The Hacker News12m

ShadowCaptcha Exploits WordPress Sites to Spread Ransomware, Info Stealers, and Crypto Miners

ShadowCaptcha exploits 100+ WordPress sites since Aug 2025, spreading ransomware, stealers, and miners worldwide.
The Hacker News1h

HOOK Android Trojan Adds Ransomware Overlays, Expands to 107 Remote Commands

HOOK Android trojan evolves with 107 commands, adding ransomware overlays and NFC scams, threatening financial security.
The Hacker News4h

Google to Verify All Android Developers in 4 Countries to Block Malicious Apps

"Android will require all apps to be registered by verified developers in order to be installed by users on certified Android ...
The Hacker News5h

CISA Adds Three Exploited Vulnerabilities to KEV Catalog Affecting Citrix and Git

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws impacting Citrix ...
The Hacker News17h

UNC6384 Deploys PlugX via Captive Portal Hijacks and Valid Certificates Targeting Diplomats

UNC6384 is assessed to share tactical and tooling overlaps with a known Chinese hacking group called Mustang Panda, which is also tracked as BASIN, Bronze President, Camaro Dragon, Earth Preta, ...
The Hacker News17h

Docker Fixes CVE-2025-9074, Critical Container Escape Vulnerability With CVSS Score 9.3

Docker patched CVE-2025-9074 (CVSS 9.3), a flaw enabling container escape via unauthenticated API, risking host takeover.
The Hacker News18h

Phishing Campaign Uses UpCrypter in Fake Voicemail Emails to Deliver RAT Payloads

UpCrypter phishing since Aug 2025 uses fake voicemails, RAT payloads, and anti-analysis, hitting global industries.
The Hacker News23h

Why SIEM Rules Fail and How to Fix Them: Insights from 160 Million Attack Simulations

Organizations detected only 1 in 7 attacks in 2025; log failures, misconfigurations, and performance issues left systems ...