The Hacker News

China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth

China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth

The Hacker News June 16, 2026

Cybersecurity researchers have flagged two previously undocumented Windows variants of what was believed to be a Linux-only...

Read More Read more about China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

The Hacker News June 16, 2026

The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages...

Read More Read more about Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

The Hacker News June 16, 2026

Cisco has released security updates for a medium-severity security flaw in Catalyst SD-WAN Manager that has come...

Read More Read more about Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation

CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation

The Hacker News June 15, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a security flaw impacting LiteSpeed cPanel Plugin...

Read More Read more about CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

The Hacker News June 15, 2026

A China-linked espionage group hid inside North American medical, academic, and military research networks for more than...

Read More Read more about Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

The Hacker News June 15, 2026

Cybersecurity researchers have flagged two malicious cyber campaigns that exhibit similarities with a persistent North Korean threat...

Read More Read more about North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

The Hacker News June 15, 2026

A default low-privilege account on a LiteLLM proxy can climb to full admin and run code on...

Read More Read more about LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

The Hacker News June 15, 2026

A single click on a trusted Microsoft link could have let an attacker pull emails, calendar details,...

Read More Read more about One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

The Hacker News June 15, 2026

Stuff broke again. Not in a movie way. An old tool was left exposed. An abandoned package...

Read More Read more about ⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

The Onboarding Password Mistake That Creates Unnecessary Risk

The Onboarding Password Mistake That Creates Unnecessary Risk

The Hacker News June 15, 2026

Employee onboarding is a busy time for IT teams. New starters need devices, accounts, access permissions, and...

Read More Read more about The Onboarding Password Mistake That Creates Unnecessary Risk