The Hacker News

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

The Hacker News April 7, 2026

A China-based threat actor known for deploying Medusa ransomware has been linked to the weaponization of a combination...

Read More Read more about China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

The Hacker News April 6, 2026

Threat actors are exploiting a maximum-severity security flaw in Flowise, an open-source artificial intelligence (AI) platform, according...

Read More Read more about Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

The Hacker News April 6, 2026

An Iran-nexus threat actor is suspected to be behind a password-spraying campaign targeting Microsoft 365 environments in Israel...

Read More Read more about Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

The Hacker News April 6, 2026

Threat actors likely associated with the Democratic People's Republic of Korea (DPRK) have been observed using GitHub as...

Read More Read more about DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps

Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps

The Hacker News April 6, 2026

Your attack surface no longer lives on one operating system, and neither do the campaigns targeting it. In enterprise environments,...

Read More Read more about Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

The Hacker News April 6, 2026

This week had real hits. The key software got tampered with. Active bugs showed up in the tools people use...

Read More Read more about ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

The Hacker News April 6, 2026

The most active piece of enterprise infrastructure in the company is the developer workstation. That laptop is where credentials...

Read More Read more about How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

The Hacker News April 6, 2026

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BYOVD) technique to...

Read More Read more about Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

The Hacker News April 6, 2026

Germany's Federal Criminal Police Office (aka BKA or the Bundeskriminalamt) has unmasked the real identity of the...

Read More Read more about BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

The Hacker News April 5, 2026

Drift has revealed that the April 1, 2026, attack that led to the theft of $285 million was the culmination...

Read More Read more about $285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation