Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites Threat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress pl... 2026-6-5 08:38:59 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com stripe skimmer php security attacker

FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins Security researchers and the FBI are warning that a wave of FIFA-themed fraud is already hitting Wo... 2026-6-5 07:1:41 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com fifa ib facebook lookalike themed

PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network Threat Intelligence / Cloud SecurityThe threat actor known as PCPJack has hijacked cloud servers a... 2026-6-5 05:34:19 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com proxy c2 chisel cloud sliver

Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public Vulnerability / Network SecurityCisco has patched a bug in Unified Communications Manager that let... 2026-6-4 16:55:51 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com unified webdialer 2026 exploited network

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories Vulnerability / AI SecurityA security researcher found a flaw in Anthropic's Claude Code GitHub A... 2026-6-4 15:15:26 | 阅读: 27 | 收藏 | The Hacker News - thehackernews.com claude anthropic github ryotak attacker

Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It Artificial Intelligence / Defense TechnologyOver the past several weeks, the cybersecurity commun... 2026-6-4 15:10:0 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com mission security securely classified operational

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories It got stupid again.The internet still feels held together with tape. Bad plugins, old bugs, fake to... 2026-6-4 14:0:49 | 阅读: 25 | 收藏 | The Hacker News - thehackernews.com security 2026 attackers remote attacker

China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target Euro... 2026-6-4 12:22:25 | 阅读: 22 | 收藏 | The Hacker News - thehackernews.com 2026 lures atlas ta4922

FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads Malvertising / Browser SecurityCybersecurity researchers have shed light on a macOS malvertising c... 2026-6-4 11:19:53 | 阅读: 24 | 收藏 | The Hacker News - thehackernews.com malicious cri attackers

Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS Cybersecurity researchers have flagged a large-scale operation that impersonates open-source and fr... 2026-6-4 09:51:28 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com tds download sessiongate analysis stealer

Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months Cyber Espionage / MalwareUnknown attackers spent at least five months inside the Outlook mailbox o... 2026-6-4 09:33:57 | 阅读: 20 | 收藏 | The Hacker News - thehackernews.com attacker mailbox dropbox exchange symantec

CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog Web Security / VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on... 2026-6-4 07:19:33 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com php cachewarmer 2026 serialized remote

DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets Cryptocurrency / Law EnforcementThe U.S. Department of Justice (DoJ) on Wednesday announced the re... 2026-6-4 06:6:25 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com police americans compounds investment criminal

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android Vulnerability / Artificial IntelligenceA single poisoned notification from WhatsApp, Slack, SMS,... 2026-6-3 19:11:15 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com gemini yair victim safebreach memory

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT Malware / Microsoft DefenderCybersecurity researchers have flagged a new malspam campaign that mak... 2026-6-3 16:29:16 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com victim loader trojan microsoft security

Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag Vulnerability / Mobile SecurityA development flag left switched on in production builds of several... 2026-6-3 14:56:35 | 阅读: 2 | 收藏 | The Hacker News - thehackernews.com microsoft powerpoint enclave copilot 2026

Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) Vulnerability / Cloud SecurityRedis has patched a use-after-free in its blocking-client code tha... 2026-6-3 13:47:9 | 阅读: 2 | 收藏 | The Hacker News - thehackernews.com client cloud memory xint lua

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens Vulnerability / Software DevelopmentCybersecurity researchers have disclosed a one-click attack vi... 2026-6-3 12:58:22 | 阅读: 20 | 收藏 | The Hacker News - thehackernews.com github microsoft webviews malicious attacker

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP) The Fragmented State of Modern Enterprise IdentityEnterprise IAM is approaching a breaking point.... 2026-6-3 11:58:0 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com ivip orchid security identities estate

Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and... 2026-6-3 11:28:59 | 阅读: 19 | 收藏 | The Hacker News - thehackernews.com network attacker foothold shape