The Hacker News

ID: fa8b6a49-416b-5e02-96d2-6e80c4becccd

STIX ID: identity--fa8b6a49-416b-5e02-96d2-6e80c4becccd

Feed Type: rss

Earliest post: 2023-12-18

Latest post: 2026-05-29

The Hacker News is a leading independent source for real-time cybersecurity news, threat intelligence, vulnerabilities, breach reports, and expert analysis.

Exclude posts that do not describe a security incident

Classification

Min Pub Date

01/01/2020

Max Pub Date

05/29/2026

Title	Date Published ↓	Describes Incident	Author	Visible
New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks	2026-05-29	True	[email protected] (The Hacker News)	True
What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks	2026-05-29	True	[email protected] (The Hacker News)	True
Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets	2026-05-29	True	[email protected] (The Hacker News)	True
Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels	2026-05-29	True	[email protected] (The Hacker News)	True
Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code	2026-05-28	True	[email protected] (The Hacker News)	True
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal	2026-05-28	True	[email protected] (The Hacker News)	True
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More	2026-05-28	True	[email protected] (The Hacker News)	True
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware	2026-05-28	True	[email protected] (The Hacker News)	True
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users	2026-05-27	True	[email protected] (The Hacker News)	True
Malicious npm Package Stole Files From Claude AI User Directory via GitHub	2026-05-27	True	[email protected] (The Hacker News)	True
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure	2026-05-27	True	[email protected] (The Hacker News)	True
Gitea Vulnerability Exposes Private Container Images without Authentication	2026-05-27	True	[email protected] (The Hacker News)	True
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites	2026-05-27	True	[email protected] (The Hacker News)	True
MFA Prompt Bombing: Why Your Second Factor Isn't Saving You	2026-05-26	True	[email protected] (The Hacker News)	True
CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks	2026-05-26	True	[email protected] (The Hacker News)	True
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning	2026-05-26	True	[email protected] (The Hacker News)	True
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike	2026-05-26	True	[email protected] (The Hacker News)	True
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos	2026-05-25	True	[email protected] (The Hacker News)	True
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks	2026-05-25	True	[email protected] (The Hacker News)	True
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms	2026-05-25	True	[email protected] (The Hacker News)	True
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO	2026-05-25	True	[email protected] (The Hacker News)	True
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software	2026-05-23	True	[email protected] (The Hacker News)	True
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer	2026-05-23	True	[email protected] (The Hacker News)	True
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root	2026-05-23	True	[email protected] (The Hacker News)	True
Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV	2026-05-23	True	[email protected] (The Hacker News)	True
First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups	2026-05-22	True	[email protected] (The Hacker News)	True
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware	2026-05-22	True	[email protected] (The Hacker News)	True
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows	2026-05-22	True	[email protected] (The Hacker News)	True
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV	2026-05-22	True	[email protected] (The Hacker News)	True
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access	2026-05-22	True	[email protected] (The Hacker News)	True
Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor	2026-05-21	True	[email protected] (The Hacker News)	True
ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories	2026-05-21	True	[email protected] (The Hacker News)	True
Microsoft Warns of Two Actively Exploited Defender Vulnerabilities	2026-05-21	True	[email protected] (The Hacker News)	True
When Identity is the Attack Path	2026-05-21	True	[email protected] (The Hacker News)	True
9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros	2026-05-21	True	[email protected] (The Hacker News)	True
GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension	2026-05-21	True	[email protected] (The Hacker News)	True
Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks	2026-05-21	True	[email protected] (The Hacker News)	True
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks	2026-05-20	True	[email protected] (The Hacker News)	True
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API	2026-05-20	True	[email protected] (The Hacker News)	True
Typosquatting Is No Longer a User Problem. It's a Supply Chain Problem	2026-05-20	True	[email protected] (The Hacker News)	True
Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit	2026-05-20	True	[email protected] (The Hacker News)	True
Grafana GitHub Breach Exposes Source Code via TanStack npm Attack	2026-05-20	True	[email protected] (The Hacker News)	True
GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos	2026-05-20	True	[email protected] (The Hacker News)	True
Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps	2026-05-19	True	[email protected] (The Hacker News)	True
DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability	2026-05-19	True	[email protected] (The Hacker News)	True
The New Phishing Click: How OAuth Consent Bypasses MFA	2026-05-19	True	[email protected] (The Hacker News)	True
Drupal to Release Urgent Core Security Updates on May 20, Sites Told to Prepare	2026-05-19	True	[email protected] (The Hacker News)	True
SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access	2026-05-19	True	[email protected] (The Hacker News)	True
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer	2026-05-19	True	[email protected] (The Hacker News)	True
Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials	2026-05-19	True	[email protected] (The Hacker News)	True