The Hacker News

Ukraine Aid Groups Targeted Through Fake Zoom Meetings and Weaponized PDF Files

Cybersecurity researchers have disclosed details of a coordinated spear-phishing campaign dubbed PhantomCaptcha targeting ...

PhantomRaven attack floods npm with credential-stealing packages

An active campaign named 'PhantomRaven' is targeting developers with dozens of malicious npm packages that steal authentication tokens, CI/CD secrets, and GitHub credentials.
CSO Online

Google ‘Careers’ scam lands job seekers in credential traps

The phishing campaign impersonates Google’s recruiting team with fake “Book a Call” invites, using spoofed logins and HTML ...
CSO Online

North Korean threat actors turn blockchains into malware delivery servers

EtherHiding’: Nation-state and cybercriminal groups are leveraging smart contracts as command-and-control servers for ...
Ventureburn

MEXC Review October 2025: Is It A Safe Crypto Exchange?

MEXC Futures M-Day is a promotional futures event in which customers trade USDT-M or Coin-M futures for a chance to win ...
InfoWorld

The best Java microframeworks to learn now

The Java ecosystem brings you unmatched speed and stability. Here’s our review of seven top-shelf Java microframeworks built ...
Security Boulevard

Methodology: How we discovered over 2k high-impact vulnerabilities in apps built with vibe coding platforms

Discover the security risks in vibe-coded applications as we uncover over 2,000 vulnerabilities, exposed secrets, and PII ...
The Hacker News

⚡ Weekly Recap: F5 Breached, Linux Rootkits, Pixnapping Attack, EtherHiding & More

F5 Breached, Linux Rootkits, Pixnapping Attack, EtherHiding & More | Read more hacking news on The Hacker News cybersecurity ...