HackRead

HackRead, established on November 11, 2011, serves as your portal to the expansive realm of the Internet, focusing on Technology, Security, Privacy, Surveillance, Cyber Warfare, Cybercrime, and up-to-date Hacking News, along with comprehensive reviews of Social Media Platforms. We pride ourselves on being a trustworthy and credible news outlet for essential subjects related to Technology, Information Security, Cyber Security, Warfare, and Hacking. Our platform offers daily updates and valuable insights on significant developments, threats, and tools pertaining to IT and Computer Security. We have been referenced by various AntiVirus software programs that many users rely on for their online safety. Notably, our in-depth investigative journalism led to HackRead being cited as a resource by McAfee® Labs in their Threats Report for the third quarter of 2013.

International, Trade/B2B

English

Online/Digital

Outlet metrics

Domain Authority

Ranking

Global

#234951

United States

#163295

Computers Electronics and Technology/Computers Electronics and Technology

#3370

Traffic sources

Monthly visitors

Articles

Interlock Ransomware Deploys New NodeSnake RAT in UK Attacks

1 week ago | hackread.com | Deeba Ahmed

Cybersecurity firm Quorum Cyber has uncovered two new versions of malicious software known as NodeSnake. This discovery highlights a possible shift in targets for the Interlock ransomware group, which is believed to be behind these attacks. Quorum Cyber’s Threat Intelligence team has been tracking NodeSnake and strongly believes it is connected to Interlock ransomware. This connection is based on the shared online infrastructure used by the attackers.
Threat Actor Claims TikTok Breach, Puts 428 Million Records Up for Sale

1 week ago | hackread.com | Amir Waqas

A newly emerged threat actor, going by the alias “Often9,” has posted on a prominent cybercrime and database trading forum, claiming to possess 428 million unique TikTok user records.
Victoria's Secret Website Down Following Security Incident

1 week ago | hackread.com | Deeba Ahmed

Victoria’s Secret website was down due to a ‘security incident’ impacting online and some in-store services. Get the latest on the lingerie giant’s efforts to restore operations and what customers need to know. Lingerie giant Victoria’s Secret shut down its US website and some in-store services for three days due to an unspecified security incident. Customers attempting to access the Victoria’s Secret website were met with a message explaining the service disruption.
Chinese Phishing Service Haozi Resurfaces, Fueling Criminal Profits

1 week ago | hackread.com | Deeba Ahmed

A new report from cybersecurity firm Netcraft reveals a rise in a Chinese-language Phishing-as-a-Service (PhaaS) known as Haozi. This service makes it incredibly easy for criminals, even those without technical skills, to launch sophisticated phishing attacks. Rob Duncan, a security researcher at Netcraft, discovered this surge over the past five months.
Fake ChatGPT and InVideo AI Downloads Deliver Ransomware

1 week ago | hackread.com | Deeba Ahmed

Cisco Talos uncovers CyberLock ransomware, Lucky_Gh0$t, and Numero malware masquerading as legitimate software and AI tool installers. Learn how these fake installers exploit businesses in sales, tech, and marketing. Cybersecurity researchers at Cisco Talos have revealed that the increasing presence of Artificial Intelligence (AI) in the business world has opened new opportunities for cybercriminals.
New Malware Spooted Corrupts Its Own Headers to Block Analysis

1 week ago | hackread.com | Amir Waqas

The FortiGuard Incident Response Team has released a detailed investigation into a newly discovered malware that managed to quietly operate on a compromised Windows machine for several weeks. What makes this malware different from others is its deliberate corruption of its own DOS and PE headers, a method designed to obstruct forensic analysis and reconstruction efforts by security researchers.
OneDrive File Picker Flaw Gives Apps Full Access to User Drives

1 week ago | hackread.com | Amir Waqas

A recent investigation by cybersecurity researchers at Oasis Security has revealed a data overreach in how Microsoft’s OneDrive File Picker handles permissions, opening the door for hundreds of popular web applications, including ChatGPT, Slack, Trello, and ClickUp, to access far more user data than most people realize. According to the report, the problem comes from how the OneDrive File Picker requests OAuth permissions.
Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say

1 week ago | hackread.com | Amir Waqas

Cybersecurity researchers at BeyondTrust are warning about a little-known but dangerous issue within Microsoft’s Entra identity platform. The issue isn’t some hidden bug or overlooked vulnerability; it’s a feature, built into the system by design, that attackers can exploit. The issue is that guest users invited into an organization’s Azure tenant can create and transfer subscriptions inside that tenant without having any direct admin privileges there.
Fake AI Video Tool Ads on Facebook, LinkedIn Spread Infostealers

1 week ago | hackread.com | Deeba Ahmed

Mandiant Threat Defense uncovers a campaign where Vietnam-based group UNC6032 tricks users with malicious social media ads for fake AI video tools, leading to stolen credentials and credit card information. Mandiant Threat Defense has uncovered a widespread cybercrime operation preying on the public’s excitement for new AI tools.
Malware Hidden in AI Models on PyPI Targets Alibaba AI Labs Users

1 week ago | hackread.com | Deeba Ahmed

ReversingLabs discovers new malware hidden inside AI/ML models on PyPI, targeting Alibaba AI Labs users. Learn how attackers exploit Pickle files and the growing threat to the software supply chain. Cybersecurity experts from ReversingLabs (RL) have discovered a new trick used by cybercriminals to spread harmful software, this time by hiding it within artificial intelligence (AI) and machine learning (ML) models.