The Hacker News

How to Reduce Phishing Exposure Before It Turns into Business Disruption

How to Reduce Phishing Exposure Before It Turns into Business Disruption

The Hacker News May 18, 2026

What happens when a phishing email looks clean enough to pass through security, but dangerous enough to...

Read More Read more about How to Reduce Phishing Exposure Before It Turns into Business Disruption

Developer Workstations Are Now Part of the Software Supply Chain

Developer Workstations Are Now Part of the Software Supply Chain

The Hacker News May 18, 2026

Supply chain attackers are not only trying to slip malicious code into trusted software. They are trying...

Read More Read more about Developer Workstations Are Now Part of the Software Supply Chain

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

The Hacker News May 18, 2026

Ivanti, Fortinet, n8n, SAP, and VMware have released security fixes for various vulnerabilities that could be exploited...

Read More Read more about Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware

Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware

The Hacker News May 18, 2026

Cybersecurity researchers have discovered four new npm packages containing information-stealing malware, one of which is a clone...

Read More Read more about Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware

Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations

Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations

The Hacker News May 18, 2026

A new analysis of the Lua-based fast16 malware has confirmed that it was a cyber sabotage tool...

Read More Read more about Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

The Hacker News May 17, 2026

Chaotic Eclipse, the security researcher behind the recently disclosed Windows flaws, YellowKey and GreenPlasma, has released a...

Read More Read more about MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

The Hacker News May 17, 2026

A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in...

Read More Read more about NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

The Hacker News May 17, 2026

Grafana has disclosed that an "unauthorized party" obtained a token that granted them the ability to access...

Read More Read more about Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

The Hacker News May 16, 2026

A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under active...

Read More Read more about Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

The Hacker News May 15, 2026

The Russian state-sponsored hacking group known as Turla has...

Read More Read more about Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access