The Hacker News

The Hacker News (THN) is widely regarded as a top source for Information Security news, boasting over 5 million readers and followers each month. THN delivers up-to-date Cyber Security News and provides thorough insights into current and emerging trends in Information Technology, exploring their impact on the cyber landscape. The platform is backed by a community of security professionals, hackers, administrators, and members from various underground hacking groups around the globe.

International

English

Blog

Outlet metrics

Domain Authority

Ranking

Global

#50843

United States

#27989

Computers Electronics and Technology/Computer Security

#80

Traffic sources

Monthly visitors

Articles

Qilin Ransomware Adds "Call Lawyer" Feature to Pressure Victims for Larger Ransoms

1 week ago | thehackernews.com | Ravie Lakshmanan

The threat actors behind the Qilin ransomware-as-a-service (RaaS) scheme are now offering legal counsel for affiliates to put more pressure on victims to pay up, as the cybercrime group intensifies its activity and tries to fill the void left by its rivals. The new feature takes the form of a "Call Lawyer" feature on the affiliate panel, per Israeli cybersecurity company Cybereason.
Iran's State TV Hijacked Mid-Broadcast Amid Geopolitical Tensions; $90M Stolen in Crypto Heist

1 week ago | thehackernews.com | Ravie Lakshmanan

Iran's state-owned TV broadcaster was hacked Wednesday night to interrupt regular programming and air videos calling for street protests against the Iranian government, according to multiple reports. It's currently not known who is behind the attack, although Iran pointed fingers at Israel, per Iran International. "If you experience disruptions or irrelevant messages while watching various TV channels, it is due to enemy interference with satellite signals," the broadcaster was quoted as saying.
Massive 7.3 Tbps DDoS Attack Delivers 37.4 TB in 45 Seconds, Targeting Hosting Provider

1 week ago | thehackernews.com | Ravie Lakshmanan

Cloudflare on Thursday said it autonomously blocked the largest ever distributed denial-of-service (DDoS) attack ever recorded, which hit a peak of 7.3 terabits per second (Tbps). The attack, which was detected in mid-May 2025, targeted an unnamed hosting provider. "Hosting providers and critical Internet infrastructure have increasingly become targets of DDoS attacks," Cloudflare's Omer Yoachimik said.
67 Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers

1 week ago | thehackernews.com | Ravie Lakshmanan

Cybersecurity researchers have uncovered a new campaign in which the threat actors have published more than 67 GitHub repositories that claim to offer Python-based hacking tools, but deliver trojanized payloads instead.
New Android Malware Surge Hits Devices via Overlays, Virtualization Fraud and NFC Theft

1 week ago | thehackernews.com | Ravie Lakshmanan

Cybersecurity researchers have exposed the inner workings of an Android malware called AntiDot that has compromised over 3,775 devices as part of 273 unique campaigns. "Operated by the financially motivated threat actor LARVA-398, AntiDot is actively sold as a Malware-as-a-Service (MaaS) on underground forums and has been linked to a wide range of mobile campaigns," PRODAFT said in a report shared with The Hacker News.
BlueNoroff Deepfake Zoom Scam Hits Crypto Employee with MacOS Backdoor Malware

1 week ago | thehackernews.com | Ravie Lakshmanan

The North Korea-aligned threat actor known as BlueNoroff has been observed targeting an employee in the Web3 sector with deceptive Zoom calls featuring deepfaked company executives to trick them into installing malware on their Apple macOS devices. Huntress, which revealed details of the cyber intrusion, said the attack targeted an unnamed cryptocurrency foundation employee, who received a message from an external contact on Telegram.
Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign

1 week ago | thehackernews.com | Ravie Lakshmanan

Threat actors with suspected ties to Russia have been observed taking advantage of a Google account feature called application specific passwords (or app passwords) as part of a novel social engineering tactic designed to gain access to victims' emails. Details of the highly targeted campaign were disclosed by Google Threat Intelligence Group (GTIG) and the Citizen Lab, stating the activity seeks to impersonate the U.S. Department of State.
Meta Adds Passkey Login Support to Facebook for Android and iOS Users

1 week ago | thehackernews.com | Ravie Lakshmanan

Meta Platforms on Wednesday announced that it's adding support for passkeys, the next-generation password standard, on Facebook. "Passkeys are a new way to verify your identity and login to your account that's easier and more secure than traditional passwords," the tech giant said in a post. Support for passkeys is expected to be available "soon" on Android and iOS mobile devices. The feature is also coming to its Messenger platform in the coming months.
New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

1 week ago | thehackernews.com | Ravie Lakshmanan

Cybersecurity researchers have uncovered two local privilege escalation (LPE) flaws that could be exploited to gain root privileges on machines running major Linux distributions.
New Malware Campaign Uses Cloudflare Tunnels to Deliver RATs via Phishing Chains

1 week ago | thehackernews.com | Ravie Lakshmanan

A new campaign is making use of Cloudflare Tunnel subdomains to host malicious payloads and deliver them via malicious attachments embedded in phishing emails. The ongoing campaign has been codenamed SERPENTINE#CLOUD by Securonix. It leverages "the Cloudflare Tunnel infrastructure and Python-based loaders to deliver memory-injected payloads through a chain of shortcut files and obfuscated scripts," security researcher Tim Peck said in a report shared with The Hacker News.