HackRead

HackRead, established on November 11, 2011, serves as your portal to the expansive realm of the Internet, focusing on Technology, Security, Privacy, Surveillance, Cyber Warfare, Cybercrime, and up-to-date Hacking News, along with comprehensive reviews of Social Media Platforms. We pride ourselves on being a trustworthy and credible news outlet for essential subjects related to Technology, Information Security, Cyber Security, Warfare, and Hacking. Our platform offers daily updates and valuable insights on significant developments, threats, and tools pertaining to IT and Computer Security. We have been referenced by various AntiVirus software programs that many users rely on for their online safety. Notably, our in-depth investigative journalism led to HackRead being cited as a resource by McAfee® Labs in their Threats Report for the third quarter of 2013.

International, Trade/B2B

English

Online/Digital

Outlet metrics

Domain Authority

Ranking

Global

#234951

United States

#163295

Computers Electronics and Technology/Computers Electronics and Technology

#3370

Traffic sources

Monthly visitors

Articles

Phishing Attack Uses Blob URIs to Show Fake Login Pages in Your Browser

5 days ago | hackread.com | Amir Waqas

Cofense Intelligence reveals a novel phishing technique using blob URIs to create local fake login pages, bypassing email security and stealing credentials. Cybersecurity researchers at Cofense Intelligence have reported a new and increasingly effective method cybercriminals are using to deliver credential phishing pages directly to users’ email inboxes. This technique, which emerged in mid-2022, leverages “blob URIs” (binary large objects- Uniform Resource Identifiers).
Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts

5 days ago | hackread.com | Deeba Ahmed

A flaw in Microsoft Entra ID’s legacy login allowed attackers to bypass MFA, targeting admin accounts across finance, healthcare, and tech sectors. Cybersecurity firm Guardz has discovered a targeted campaign exploiting a weakness in Microsoft Entra ID’s legacy authentication protocols, allowing attackers to bypass modern security measures like Multi-Factor Authentication (MFA).
PowerSchool Paid Ransom, Now Hackers Target Teachers for More

6 days ago | hackread.com | Amir Waqas

PowerSchool paid ransom after a major data breach; now hackers are targeting teachers and schools with direct extortion threats for more payment. On December 28, 2024, education tech giant PowerSchool experienced one of the biggest data breaches in U.S. school history, compromising the personal information of over 60 million students and 9.5 million teachers. The company responded by paying an undisclosed ransom. But the fallout didn’t stop there.
LockBit’s Dark Web Domains Hacked, Internal Data and Wallets Leaked

6 days ago | hackread.com | Amir Waqas

LockBit’s dark web domains were hacked, exposing internal data, affiliate tools, and over 60,000 Bitcoin wallets in a major blow to the ransomware group. The ransomware group LockBit has suffered a serious blow after its dark web domain and infrastructure was hijacked and defaced by an unknown attacker. The breach, which surfaced on May 7, disrupted several of the group’s hidden service panels and included a public taunt: “Don’t do crime.
Fake Crypto Exchange Ads on Facebook Spread Malware

6 days ago | hackread.com | Deeba Ahmed

Bitdefender exposes Facebook ad scams using fake crypto sites and celebrity lures to spread malware via malicious desktop clients and PowerShell scripts. A persistent malware campaign is exploiting Facebook’s advertising network to target cryptocurrency enthusiasts, security researchers at Bitdefender revealed today.
Fake AI Tools Push New Noodlophile Stealer Through Facebook Ads

6 days ago | hackread.com | Deeba Ahmed

Scammers are using fake AI tools and Facebook ads to spread Noodlophile Stealer malware, targeting users with a multi-stage attack to steal credentials. Cybersecurity researchers at Morphisec have identified a new malware campaign utilizing fake and malicious artificial intelligence (AI) platforms to distribute a new information stealer dubbed Noodlophile Stealer.
ClickFunnels Investigates Breach After Hackers Leak Business Data

1 week ago | hackread.com | Amir Waqas

ClickFunnels is investigating a data breach after hackers leaked detailed business data, including emails, phone numbers, and company profiles. A hacking group calling itself “Satanic” claims to have breached ClickFunnels, a popular US-based software platform used by marketers and entrepreneurs to build sales funnels.
Israeli NSO Group Fined $168M for Pegasus Spyware Attack on WhatsApp

1 week ago | hackread.com | Amir Waqas

US jury orders NSO Group to pay $168M to WhatsApp and Meta over Pegasus spyware use in 2019 hack. Meta calls it a major step for user privacy protection. A US federal jury has ruled in favour of WhatsApp and its parent company Meta, ordering Israeli spyware firm NSO Group to pay nearly $168 million in damages. The verdict follows years of legal battles over NSO’s use of its Pegasus spyware to infiltrate WhatsApp users’ devices.
Europol, Poland Bust Major DDoS-for-Hire Operation, Arrest 4

1 week ago | hackread.com | Amir Waqas

Polish authorities arrest 4 behind major DDoS-for-hire sites used in global attacks. Europol, US, Germany, and Dutch forces assist in takedown. In a coordinated international operation, law enforcement has shut down a major slice of the DDoS-for-hire business.
Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA

1 week ago | hackread.com | Amir Waqas

CISA warns of active exploitation of critical Langflow vulnerability (CVE-2025-3248). Critical RCE flaw allows full server takeover. Patch to version 1.3.0 now!In April 2025, cybersecurity researchers at Horizon3.ai discovered a critical security vulnerability, designated CVE-2025-3248 with 9.8 CVSS, within Langflow, a widely adopted open-source tool for building agentic artificial intelligence (Agentic AI) workflows.