The Hacker News

Where Multi-Factor Authentication Stops and Credential Abuse Starts

• Uncategorized

Where Multi-Factor Authentication Stops and Credential Abuse Starts

The Hacker News March 5, 2026

Organizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access...

Read More Read more about Where Multi-Factor Authentication Stops and Credential Abuse Starts

APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in Ukraine

• Uncategorized

APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in Ukraine

The Hacker News March 5, 2026

Cybersecurity researchers have disclosed details of a new Russian cyber campaign that has targeted Ukrainian entities with...

Read More Read more about APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in Ukraine

Europol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 Attacks

• Uncategorized

Europol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 Attacks

The Hacker News March 5, 2026

Tycoon 2FA, one of the prominent phishing-as-a-service (PhaaS) toolkits that allowed cybercriminals to stage adversary-in-the-middle (AitM) credential...

Read More Read more about Europol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 Attacks

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

• Uncategorized

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

The Hacker News March 5, 2026

A joint law enforcement operation has dismantled LeakBase, one of the world's largest online forums for cybercriminals...

Read More Read more about FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict

• Uncategorized

149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict

The Hacker News March 4, 2026

Cybersecurity researchers have warned of a surge in retaliatory hacktivist activity following the U.S.-Israel coordinated military campaign...

Read More Read more about 149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict

Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1

• Uncategorized

Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1

The Hacker News March 4, 2026

Google said it identified a "new and powerful" exploit kit dubbed Coruna (aka CryptoWaters) targeting Apple iPhone...

Read More Read more about Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1

New RFP Template for AI Usage Control and AI Governance 

• Uncategorized

New RFP Template for AI Usage Control and AI Governance 

The Hacker News March 4, 2026

As AI becomes the central engine for enterprise productivity, security leaders are finally getting the green light...

Read More Read more about New RFP Template for AI Usage Control and AI Governance 

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

• Uncategorized

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

The Hacker News March 4, 2026

Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilities that act as a conduit...

Read More Read more about Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

• Uncategorized

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

The Hacker News March 4, 2026

Cybersecurity researchers have disclosed details of an advanced persistent threat (APT) group dubbed Silver Dragon that has...

Read More Read more about APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog

• Uncategorized

CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog

The Hacker News March 3, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed security flaw impacting...

Read More Read more about CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog