Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets Cybersecurity researchers are sounding the alarm about what has been described as "malicious activi... 2026-5-14 17:22:43 | 阅读: 21 | 收藏 | The Hacker News - thehackernews.com malicious payload c2 maintainer

ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories Everything is still on fire.This week feels dumb in the worst way — bad links, weak checks, fake hel... 2026-5-14 16:7:46 | 阅读: 22 | 收藏 | The Hacker News - thehackernews.com python remote ransomware malicious attackers

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike The Belarus-aligned threat group known as Ghostwriter has been attributed to a fresh set of attacks... 2026-5-14 14:0:37 | 阅读: 31 | 收藏 | The Hacker News - thehackernews.com phishing ukraine lure bo

PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure Vulnerability / API SecurityThreat actors have been observed attempting to exploit a recently disc... 2026-5-14 11:40:14 | 阅读: 32 | 收藏 | The Hacker News - thehackernews.com agents praisonai 2026 security sysdig

How AI Hallucinations Are Creating Real Security Risks AI hallucinations are introducing serious security risks into critical infrastructure decision-maki... 2026-5-14 11:30:0 | 阅读: 28 | 收藏 | The Hacker News - thehackernews.com security incorrect threats fabricated

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has re... 2026-5-14 09:25:50 | 阅读: 30 | 收藏 | The Hacker News - thehackernews.com bitlocker windows microsoft security wim

New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption Details have emerged about a new variant of the recent Dirty Frag Linux local privilege escalation... 2026-5-14 07:6:15 | 阅读: 36 | 收藏 | The Hacker News - thehackernews.com dirty frag xfrm v12

18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE Vulnerability / Web ServerCybersecurity researchers have disclosed multiple security vulnerabiliti... 2026-5-14 06:0:9 | 阅读: 40 | 收藏 | The Hacker News - thehackernews.com attacker remote ngx 2026 directive

Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday Vulnerability / Artificial IntelligenceMicrosoft has unveiled a new multi-model artificial intelli... 2026-5-13 13:46:2 | 阅读: 32 | 收藏 | The Hacker News - thehackernews.com mdash agents windows agentic

Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation Cyber Espionage / MalwareA threat actor with affiliations to China has been linked to a "multi-wav... 2026-5-13 13:0:0 | 阅读: 40 | 收藏 | The Hacker News - thehackernews.com deed 2026 terndoor loader bitdefender

[Webinar] Why Your AppSec Tools Miss the "Lethal Path" (and How to Fix It) TL;DR: Stop chasing thousands of "toast" alerts. Join experts from Wiz and Okta/GitLab to learn how... 2026-5-13 11:52:43 | 阅读: 32 | 收藏 | The Hacker News - thehackernews.com cloud toast briefing lethal okta

Most Remediation Programs Never Confirm the Fix Actually Worked Cloud Security / AutomationSecurity teams have never had better visibility into their environments... 2026-5-13 11:30:0 | 阅读: 26 | 收藏 | The Hacker News - thehackernews.com security exposure validated consolidate

Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws Microsoft on Tuesday released patches for 138 security vulnerabilities spanning its product portfo... 2026-5-13 10:36:10 | 阅读: 28 | 收藏 | The Hacker News - thehackernews.com attacker 2026 microsoft network security

GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data Software Supply Chain / Data ExfiltrationCybersecurity researchers are calling attention to a new... 2026-5-13 08:8:54 | 阅读: 19 | 收藏 | The Hacker News - thehackernews.com rubygems gem scraped gems council

Android Adds Intrusion Logging for Sophisticated Spyware Forensics Google on Tuesday unveiled a new opt-in Android feature called Intrusion Logging for storing forens... 2026-5-13 06:55:42 | 阅读: 24 | 收藏 | The Hacker News - thehackernews.com security decrypted expanding chrome

New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution Vulnerability / Email SecurityExim has released security updates to address a severe security issu... 2026-5-12 16:44:0 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com exim bdat security corruption xbow

RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded Supply Chain Attack / Software SecurityRubyGems, the standard package manager for the Ruby program... 2026-5-12 14:47:0 | 阅读: 27 | 收藏 | The Hacker News - thehackernews.com software rubygems malicious temporarily paused

New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots Malware / Mobile SecurityCybersecurity researchers have flagged a new version of the TrickMo Andro... 2026-5-12 12:50:0 | 阅读: 28 | 收藏 | The Hacker News - thehackernews.com network trickmo ton proxy

Webinar: What the Riskiest SOC Alerts Go Unanswered - and How Radiant Security Can Help Threat Detection / AI SecurityWhy do the Riskiest SOC Alerts Go Unanswered?Security operations te... 2026-5-12 11:58:0 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com security radiant triage gap webinar

Why Agentic AI Is Security's Next Blind Spot Agentic AI is already running in production environments across many organizations today. It is exe... 2026-5-12 10:30:0 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com security agents agentic