The Hacker News2h
Microsoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse Scheme
Microsoft identifies four cybercriminals behind Storm-2139, an AI abuse scheme exploiting Azure OpenAI services for illicit ...
The Hacker News3h
12,000+ API Keys and Passwords Found in Public Datasets Used for LLM Training
Nearly 12,000 live secrets found in LLM training data, exposing AWS, Slack, and Mailchimp credentials—raising AI security ...
The Hacker News4h
Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations
Winos 4.0 malware, deployed via phishing emails impersonating Taiwan’s tax authority, steals data through keylogging, ...
The Hacker News4h
Sticky Werewolf Uses Undocumented Implant to Deploy Lumma Stealer in Russia and Belarus
Sticky Werewolf deploys Lumma Stealer via phishing attacks in Russia and Belarus, stealing credentials, banking data, and ...
The Hacker News23h
Space Pirates Targets Russian IT Firms With New LuckyStrike Agent Malware
Space Pirates deploys LuckyStrike Agent malware to infiltrate Russian IT networks, using OneDrive for C2 and evading ...
The Hacker News1d
New TgToxic Banking Trojan Variant Evolves with Anti-Analysis Upgrades
TgToxic malware evolves with advanced anti-analysis, DGA-based C2, and global expansion, targeting banking and crypto users ...
The Hacker News1d
89% of Enterprise GenAI Usage Is Invisible to Organizations Exposing Critical Security Risks, New Report Reveals
Organizations are either already adopting GenAI solutions, evaluating strategies for integrating these tools into their ...
The Hacker News1d
Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers
FBI confirms North Korea’s Lazarus Group stole $1.5B from Bybit, surpassing 2024’s total crypto heists. Investigations reveal ...
The Hacker News2d
SOC 3.0 - The Evolution of the SOC and How AI is Empowering Human Talent
AI-driven SOC 3.0 automates 100% of alerts, cuts response time from days to minutes, and enables proactive threat ...
The Hacker News1d
Leaked Black Basta Ransomware Chat Logs Reveal Inner Workings and Internal Conflicts
Leaked Black Basta chat logs expose internal conflicts, $107M in ransom earnings, and new attack tactics. Key members defect, ...
The Hacker News1d
Malicious PyPI Package "automslc" Enables 104K+ Unauthorized Deezer Music Downloads
Malicious Python package "automslc" (104K+ downloads) enables Deezer piracy, bypassing API restrictions and linking to a C2 ...
The Hacker News2d
Belarus-Linked Ghostwriter Uses Macropack-Obfuscated Excel Macros to Deploy Malware
Ghostwriter deploys malware-laced Excel files, steganography, and obfuscated macros to target Ukraine and Belarus.