The Hacker News

Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region

Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region

The Hacker News April 9, 2026

An apparent hack-for-hire campaign likely orchestrated by a threat actor with suspected ties to the Indian government targeted...

Read More Read more about Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

The Hacker News April 8, 2026

Cybersecurity researchers have flagged a new variant ofmalware called Chaosthat'scapable of hitting misconfigured cloud deployments, marking an expansion of the...

Read More Read more about New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices

Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices

The Hacker News April 8, 2026

Cybersecurity researchers have lifted the curtain on a stealthy botnet that's designed for distributed denial-of-service (DDoS) attacks. Called Masjesu,...

Read More Read more about Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices

APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies

APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies

The Hacker News April 8, 2026

The Russian threat actor known as APT28 (aka Forest Blizzard and Pawn Storm) has been linked to a...

Read More Read more about APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)

The Hacker News April 8, 2026

The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly...

Read More Read more about Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)

Anthropic’s Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems

Anthropic’s Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems

The Hacker News April 8, 2026

Artificial Intelligence (AI) company Anthropic announced a new cybersecurity initiative called Project Glasswing that will use a preview version of its...

Read More Read more about Anthropic’s Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems

N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust

N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust

The Hacker News April 8, 2026

The North Korea-linked persistent campaign known as Contagious Interview has spread its tentacles by publishing malicious packages targeting the...

Read More Read more about N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

The Hacker News April 7, 2026

Iran-affiliated cyber actors are targeting internet-facing operational technology (OT) devices across critical infrastructures in the U.S., including...

Read More Read more about Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

The Hacker News April 7, 2026

The Russia-linked threat actor known as APT28 (aka Forest Blizzard) has been linked to a new campaign that...

Read More Read more about Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

The Hacker News April 7, 2026

A high-severity security vulnerability has been disclosed in Docker Engine that could permit an attacker to bypass...

Read More Read more about Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access