The Hacker News

VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances

VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances

The Hacker News June 8, 2026

A China-nexus cyber espionage group has been observed deploying a BSD variant of a known backdoor called...

Read More Read more about VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances

UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign

UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign

The Hacker News June 8, 2026

Cybersecurity researchers have disclosed details of a financially motivated data theft extortion campaign that has targeted dozens...

Read More Read more about UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign

VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks

VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks

The Hacker News June 8, 2026

Microsoft has announced that Visual Studio Code (VS Code) will apply a two-hour delay before extensions for...

Read More Read more about VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks

New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration

New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration

The Hacker News June 6, 2026

OpenAI has begun rolling out a new Lockdown Mode to ChatGPT for eligible personal accounts to reduce...

Read More Read more about New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration

Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI

Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI

The Hacker News June 6, 2026

A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and documented how...

Read More Read more about Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

The Hacker News June 6, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U...

Read More Read more about CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs

AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs

The Hacker News June 6, 2026

Two things landed within days of each other this week. A security startup reported 21 previously unknown...

Read More Read more about AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs

Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack

Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack

The Hacker News June 6, 2026

Microsoft's GitHub repositories have become the latest to fall victim to the ongoing Miasma self-replicating supply chain...

Read More Read more about Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

The Hacker News June 5, 2026

Cisco has warned that a high-severity security flaw impacting Catalyst SD-WAN Manager has come under active exploitation. The...

Read More Read more about Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

The Hacker News June 5, 2026

Multiple software supply chain attacks have hit the npm ecosystem, with threat actors using both malicious and...

Read More Read more about IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks