News

Hackers use new HexStrike-AI tool to rapidly exploit n-day flaws

Hackers are increasingly using a new AI-powered offensive security framework called HexStrike-AI in real attacks to exploit ...

Hackers exploited Sitecore zero-day flaw to deploy backdoors

Threat actors have been exploiting a zero-day vulnerability in legacy Sitecore deployments to deploy WeepSteel reconnaissance ...
Decrypt1d

Hackers Using Ethereum Smart Contracts to Deliver Malware: Report

Ethereum smart contracts are being used to download malware via poisoned NPM packages, something Binance has linked to DPRK ...
Crypto News1d

Hackers Exploit Ethereum to Inject Malware in Popular Coding Libraries

Hackers are exploiting Ethereum smart contracts to inject malware into popular NPM coding libraries, using packages to run ...
HealthcareInfoSecurity14h

Hackers Turn Red Team AI Tool Into Citrix Exploit Engine

A red-team framework released for penetration testing has become a weapon in the wild, repurposed by hackers to accelerate ...
SecurityWeek1d

Hackers Exploit Sitecore Zero-Day for Malware Delivery

An ASP.NET feature, ViewState stores the state of a webpage in a hidden HTML field, for persistence. Attackers can target the ...
The Hacker News6d

Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling

Threat actors abused Velociraptor via Cloudflare Workers in 2024, enabling C2 tunneling and ransomware precursors ...