The Hacker News

Stay informed with the latest in cybersecurity trends, vulnerabilities, and best practices. ?? Don't miss out on this week's critical updates on patching, threats, and system protection. Read the full newsletter here:

?? One IP. 180+ C2 domains. One malware: Raspberry Robin. This Russia-linked botnet is back—smarter, stealthier, and spreading fast. Used by ransomware gangs + nation-state actors like Cadet Blizzard via USBs, Discord, and fast-flux C2s. Not just a worm—it's a launchpad for LockBit, Dridex, Clop, and more. ?? Full report: https://lnkd.in/gJ7S2KbA

?? They hid for 4 YEARS. Chinese state-backed hackers quietly lived inside a major Asian telecom, siphoning sensitive data via stealth tools like INMemory—a web shell that leaves zero forensic trace. Meanwhile, China accused 4 Taiwanese ICEFCOM hackers of cyberattacks—Taiwan denies it. ?? Details here: https://lnkd.in/gfn_FmUd

?? Using Microsoft 365? You might have 1,000+ connected apps—and not even know it. Most users guess they have fewer than 10. The reality? That’s a huge blind spot. AI, not humans, is the only way to secure SaaS at scale. ?? AskOmni makes it simple, learn how: https://lnkd.in/gTsCykBn

?? Malware Alert! Hackers are using Microsoft’s .NET MAUI to build fake banking & social apps targeting Indian and Chinese users. ?? Targets include banks, X (Twitter), and photo apps. ?? Malware hides in app buttons—stealing info when tapped. ?? .NET MAUI was built for good. Attackers are turning it into a weapon. ?? Full McAfee report → https://lnkd.in/gamRur25

?? 306 arrests. 1,842 devices seized. 7 countries. Operation Red Card (Nov 2024–Feb 2025) exposed scam networks targeting over 5,000 victims through fake investments, SMS phishing & hijacked banking apps. ?? Nigeria: 130 arrested — 113 were foreign nationals ?? South Africa: Over 1,000 SIMs seized ?? Rwanda: $305K stolen via social engineering ?? Some scammers were human trafficking victims forced into fraud ?? Learn more: https://lnkd.in/gt3wFJ5x

?? WARNING: 43% of cloud setups at risk from new "IngressNightmare" flaws. Unauth RCE in Ingress NGINX Controller for Kubernetes could let attackers take over entire clusters—no creds needed. Over 6,500 exposed. ?? CVSS 9.8 | 5 CVEs | 1 attack chain | Total cluster compromise. Patch now → Versions 1.12.1, 1.11.5, 1.10.7 Disable admission controller if not needed Lock down external access to webhooks This isn’t the NGINX Ingress Controller you think it is. ?? Full details + fixes → https://lnkd.in/gsqz_275

?? Microsoft just launched built-in AI data leak protection. Edge for Business now blocks sensitive info from being typed into ChatGPT, Gemini & more. Also out: ? 11 new Security Copilot AI agents ? Stronger phishing defense in Teams ?? Details here: https://lnkd.in/ge5277Vz

?? “Security OR usability?” is the wrong question. 71% of professionals admit to risky password behavior—not because they don't care, but because friction drives shortcuts. ?? The solution? Smarter design, not stricter rules. | Reduce complexity | Use passphrases | Give real-time feedback The right tools—like Specops Password Policy—boost both security and UX. Stop choosing between safety and simplicity. Start balancing both → https://lnkd.in/dCVnnkHC

?? URGENT: New ransomware "VanHelsing" claims 3 victims in just 17 days since March 7th launch. This RaaS operation charges newcomers $5K to join while letting experienced hackers in for free. Targets ALL major OS platforms with sophisticated "double extortion" tactics. See the full story: https://lnkd.in/gFSHZ7EW