The Hacker News

ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories

ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories

The Hacker News April 2, 2026

The latest ThreatsDay Bulletin is basically a cheat sheet for everything breaking on the internet right now. No corporate...

Read More Read more about ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories

Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners

Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners

The Hacker News April 2, 2026

A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans (RATs) and cryptocurrency miners...

Read More Read more about Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners

The State of Trusted Open Source Report

The State of Trusted Open Source Report

The Hacker News April 2, 2026

In December 2025, we shared the first-ever The State of Trusted Open Source report, featuring insights from our product...

Read More Read more about The State of Trusted Open Source Report

WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action

WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action

The Hacker News April 2, 2026

Meta-owned messaging platform WhatsApp said it alerted about 200 users who were tricked into installing a bogus...

Read More Read more about WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action

Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit

Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit

The Hacker News April 2, 2026

Apple on Wednesday expanded the availability of iOS 18.7.7 and iPadOS 18.7.7 to a broader range of devices to protect users...

Read More Read more about Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit

CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails

CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails

The Hacker News April 1, 2026

The Computer Emergency Response Team of Ukraine (CERT-UA) has disclosed details of a new phishing campaign in...

Read More Read more about CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails

Block the Prompt, Not the Work: The End of “Doctor No”

Block the Prompt, Not the Work: The End of “Doctor No”

The Hacker News April 1, 2026

There is a character that keeps appearing in enterprise security departments, and most CISOs know exactly who...

Read More Read more about Block the Prompt, Not the Work: The End of “Doctor No”

Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures

Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures

The Hacker News April 1, 2026

A multi-pronged phishing campaign is targeting Spanish-speaking users in organizations across Latin America and Europe to deliver...

Read More Read more about Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures

Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass

Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass

The Hacker News April 1, 2026

Microsoft is calling attention to a new campaign that has leveraged WhatsApp messages to distribute malicious Visual...

Read More Read more about Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass

New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released

New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released

The Hacker News April 1, 2026

Google on Thursday released security updates for its Chrome web browser to address 21 vulnerabilities, including a...

Read More Read more about New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released