Cyber Security News

📰

The Hacker News HIGH

1h

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

Threat actors are continuing to exploit a critical, now-patched security flaw impacting FortiClient Endpoint Management Server (EMS) deployments to deliver credential-stealing malware. "The campaign a...

Read more →

📰

The Hacker News LOW

3h

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share their findings and give affected vendors an opportunity to better underst...

Read more →

📰

The Hacker News LOW

3h

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

Every time you think the industry has finally stopped doing some reckless, low-effort crap, somebody spins up a fresh box full of sketchy loaders, fake installers, recycled social-engineering bait, an...

Read more →

📰

The Hacker News LOW

5h

New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"

State of AI Usage Report 2026 (full report here) by LayerX Security reveals the extent of the enterprise AI visibility gap and why most organizations still don't understand where their AI exposure is ...

Read more →

📰

The Hacker News LOW

9h

JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware

A new campaign orchestrated by a previously undocumented threat actor has targeted cryptocurrency organizations with an aim to facilitate digital asset theft using recruitment-themed social engineerin...

Read more →

📰

The Hacker News LOW

1d

Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android devices with Grandoreiro and BTMOB malware, respectively. That's according to...

Read more →

📰

The Hacker News LOW

1d

Malicious npm Package Stole Files From Claude AI User Directory via GitHub

Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities. According to OX Security, the package, named "mouse5212-super-f...

Read more →

📰

The Hacker News LOW

1d

5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

When an employee installs an AI writing assistant, connects a coding copilot to their IDE, or starts summarizing meetings with a new browser tool, they are doing exactly what a productive employee sho...

Read more →

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"

JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware

Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

Malicious npm Package Stole Files From Claude AI User Directory via GitHub

5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

Stay ahead of threats

Enquiry Received!