Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats44 Vulnerabilities50 Data Breaches12 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News187

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

The Hacker News

Industry News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

The Hacker News2d ago4m3

Cybersecurity M&A Roundup: 42 Deals Announced in February 2026

SecurityWeek

Industry News

Cybersecurity M&A Roundup: 42 Deals Announced in February 2026

Significant cybersecurity M&A deals announced by Check Point, Booz Allen, Proofpoint, Sophos, Palo Alto Networks, and Zscaler.

SecurityWeek2d ago4m3

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

The Hacker News

Industry News

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

UNC4899 breached a crypto firm via AirDrop malware and cloud exploitation in 2025, stealing millions through Kubernetes and Cloud SQL abuse.

The Hacker News2d ago4m3

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

The Hacker News

Industry News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

The Hacker News2d ago25m3

ClickFix Attack Uses Windows Terminal to Evade Detection

SecurityWeek

Industry News

ClickFix Attack Uses Windows Terminal to Evade Detection

Fake CAPTCHA pages instruct victims to paste malicious commands in the Windows Terminal instead of the Run dialog.

SecurityWeek2d ago2m3

Internet Infrastructure TLD .arpa Abused in Phishing Attacks

SecurityWeek

Industry News

Internet Infrastructure TLD .arpa Abused in Phishing Attacks

Abusing DNS record management controls, the threat actor hides the location of malicious content via Cloudflare.

SecurityWeek2d ago3m3

Industry News

Chinese Cyber Threat Lurks In Critical Asian Sectors for Years

Dark Reading

Industry News

Chinese Cyber Threat Lurks In Critical Asian Sectors for Years

An undefined Chinese-speaking actor wields a combo of custom malware, open source tools, and LOTL binaries against Windows and Linux, likely for spying.

Dark Reading2d ago1m3

Can the Security Platform Finally Deliver for the Mid-Market?

The Hacker News

Industry News

Can the Security Platform Finally Deliver for the Mid-Market?

Bitdefender GravityZone webinar shows how mid-market teams consolidate security tools to reduce complexity and improve resilience.

The Hacker News2d ago2m3

Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign

SecurityWeek

Industry News

Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign

Threat actors replace legitimate commands on the cloned installation webpages with malicious commands.

SecurityWeek2d ago2m3

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

The Hacker News

Industry News

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.

The Hacker News2d ago7m3

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

The Hacker News

Industry News

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

New hacking cluster exploits web servers and Mimikatz to infiltrate Asian infrastructure for long-term espionage in aviation, energy, and govt sectors

The Hacker News3d ago4m3

Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited

SecurityWeek

Industry News

Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited

WatchTowr reports seeing exploitation attempts for CVE-2026-20127 from numerous unique IP addresses.

SecurityWeek3d ago2m3