Switch View
Source: The Hacker News
Filter zurücksetzen
© Sector News
29.01.2026
Researchers Find 175,000 Publicly Exposed Ollama AI Servers Across 130 Countries
News Preview
A new joint investigation by SentinelOne SentinelLABS, and Censys has revealed that the open-source artificial intelligence (AI) deployment has created a vast "unmanaged, publicly accessible layer of AI compute infrastructure" that spans 175,000 unique Ollama hosts across 130 countries.
These systems, which span both cloud and residential networks ...
© HackerNews 2026
© Sector News
29.01.2026
ThreatsDay Bulletin: New RCEs, Darknet Busts, Kernel Bugs & 25+ More Stories
News Preview
This week’s updates show how small changes can create real problems. Not loud incidents, but quiet shifts that are easy to miss until they add up. The kind that affects systems people rely on every day.
Many of the stories point to the same trend: familiar tools being used in unexpected ways. Security controls are being worked on. Trusted platforms...
© HackerNews 2026
© Sector News
29.01.2026
Survey of 100+ Energy Systems Reveals Critical OT Cybersecurity Gaps
News Preview
A study by OMICRON has revealed widespread cybersecurity gaps in the operational technology (OT) networks of substations, power plants, and control centers worldwide. Drawing on data from more than 100 installations, the analysis highlights recurring technical, organizational, and functional issues that leave critical energy infrastructure vulnerab...
© HackerNews 2026
Worth to know
20.10.2025
Short Selling Radar
USA, Europe, Asia
Track Short Selling Activities worldwide
Knowing what matters
Short sale statistics, hedge fund activities and much more user-friendly information
© Sector News
29.01.2026
3 Decisions CISOs Need to Make to Prevent Downtime Risk in 2026
News Preview
Beyond the direct impact of cyberattacks, enterprises suffer from a secondary but potentially even more costly risk: operational downtime, any amount of which translates into very real damage. That’s why for CISOs, it’s key to prioritize decisions that reduce dwell time and protect their company from risk.
Three strategic steps you can take t...
© HackerNews 2026
Swarmalpha i/o · The Event Futures Prediction X
23.01.2026
© Sector News
29.01.2026
SolarWinds Fixes Four Critical Web Help Desk Flaws With Unauthenticated RCE and Auth Bypass
News Preview
SolarWinds has released security updates to address multiple security vulnerabilities impacting SolarWinds Web Help Desk, including four critical vulnerabilities that could result in authentication bypass and remote code execution (RCE).
The list of vulnerabilities is as follows -
CVE-2025-40536 (CVSS score: 8.1) - A security control bypass vulner...
© HackerNews 2026
© Sector News
29.01.2026
Google Disrupts IPIDEA — One of the World’s Largest Residential Proxy Networks
News Preview
Google on Wednesday announced that it worked together with other partners to disrupt IPIDEA, which it described as one of the largest residential proxy networks in the world.
To that end, the company said it took legal action to take down dozens of domains used to control devices and proxy traffic through them. As of writing, IPIDEA's website ("www...
© HackerNews 2026
© Sector News
28.01.2026
Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware
News Preview
Cybersecurity researchers have flagged a new malicious Microsoft Visual Studio Code (VS Code) extension for Moltbot (formerly Clawdbot) on the official Extension Marketplace that claims to be a free artificial intelligence (AI) coding assistant, but stealthily drops a malicious payload on compromised hosts.
The extension, named "ClawdBot Agent - AI...
© HackerNews 2026
© Sector News
28.01.2026
Russia-Aligned ELECTRUM Tied to December 2025 Cyber Attack on Polish Power Grid
News Preview
The "coordinated" cyber attack targeting multiple sites across the Polish power grid has been attributed with medium confidence to a Russian state-sponsored hacking crew known as ELECTRUM.
Operational technology (OT) cybersecurity company Dragos, in a new intelligence brief published Tuesday, described the late December 2025 activity as the first m...
© HackerNews 2026
© Sector News
28.01.2026
Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution
News Preview
Cybersecurity researchers have disclosed two new security flaws in the n8n workflow automation platform, including a crucial vulnerability that could result in remote code execution.
The weaknesses, discovered by the JFrog Security Research team, are listed below -
CVE-2026-1470 (CVSS score: 9.9) - An eval injection vulnerability that could allow ...
© HackerNews 2026
© Sector News
28.01.2026
From Triage to Threat Hunts: How AI Accelerates SecOps
News Preview
If you work in security operations, the concept of the AI SOC agent is likely familiar. Early narratives promised total autonomy. Vendors seized on the idea of the "Autonomous SOC" and suggested a future where algorithms replaced analysts.
That future has not arrived. We have not seen mass layoffs or empty security operations centers. We have inste...
© HackerNews 2026
© Sector News
28.01.2026
Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution
News Preview
A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating system.
The vulnerability, tracked as CVE-2026-22709, carries a CVSS score of 9.8 out of 10.0 on the CVSS scoring system.
"In vm2 for version 3.10.0, P...
© HackerNews 2026
© Sector News
28.01.2026
Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks
News Preview
Threat actors with ties to China have been observed using an updated version of a backdoor called COOLCLIENT in cyber espionage attacks in 2025 to facilitate comprehensive data theft from infected endpoints.
The activity has been attributed to Mustang Panda (aka Earth Preta, Fireant, HoneyMyte, Polaris, and Twill Typhoon) with the intrusions primar...
© HackerNews 2026
Advertisment
20.10.2025
© Sector News
28.01.2026
Password Reuse in Disguise: An Often-Missed Risky Workaround
News Preview
When security teams discuss credential-related risk, the focus typically falls on threats such as phishing, malware, or ransomware. These attack methods continue to evolve and rightly command attention. However, one of the most persistent and underestimated risks to organizational security remains far more ordinary.
Near-identical password reuse co...
© HackerNews 2026
© Sector News
28.01.2026
Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088
News Preview
Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads.
"Discovered and patched in July 2025, government-backed threat actors linked to Russia a...
© HackerNews 2026
© Sector News
28.01.2026
Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan
News Preview
Cybersecurity researchers have discovered two malicious packages in the Python Package Index (PyPI) repository that masquerade as spellcheckers but contain functionality to deliver a remote access trojan (RAT).
The packages, named spellcheckerpy and spellcheckpy, are no longer available on PyPI, but not before they were collectively downloaded a li...
© HackerNews 2026
© Sector News
28.01.2026
Fortinet Patches CVE-2026-24858 After Active FortiOS SSO Exploitation Detected
News Preview
Fortinet has begun releasing security updates to address a critical flaw impacting FortiOS that has come under active exploitation in the wild.
The vulnerability, assigned the CVE identifier CVE-2026-24858 (CVSS score: 9.4), has been described as an authentication bypass related to FortiOS single sign-on (SSO). The flaw also affects FortiManager an...
© HackerNews 2026
© Sector News
27.01.2026
WhatsApp Rolls Out Lockdown-Style Security Mode to Protect Targeted Users From Spyware
News Preview
Meta on Tuesday announced it's adding Strict Account Settings on WhatsApp to secure certain users against advanced cyber attacks because of who they are and what they do.
The feature, similar to Lockdown Mode in Apple iOS and Advanced Protection in Android, aims to protect individuals, such as journalists or public-facing figures, from sophisticate...
© HackerNews 2026
© Sector News
27.01.2026
Experts Detect Pakistan-Linked Cyber Campaigns Aimed at Indian Government Entities
News Preview
Indian government entities have been targeted in two campaigns undertaken by a threat actor that operates in Pakistan using previously undocumented tradecraft.
The campaigns have been codenamed Gopher Strike and Sheet Attack by Zscaler ThreatLabz, which identified them in September 2025.
"While these campaigns share some similarities with the Pakis...
© HackerNews 2026
© Sector News
27.01.2026
ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services
News Preview
Cybersecurity researchers have disclosed details of a new campaign that combines ClickFix-style fake CAPTCHAs with a signed Microsoft Application Virtualization (App-V) script to distribute an information stealer called Amatera.
"Instead of launching PowerShell directly, the attacker uses this script to control how execution begins and to avoid mor...
© HackerNews 2026
© Sector News
27.01.2026
CTEM in Practice: Prioritization, Validation, and Outcomes That Matter
News Preview
Cybersecurity teams increasingly want to move beyond looking at threats and vulnerabilities in isolation. It’s not only about what could go wrong (vulnerabilities) or who might attack (threats), but where they intersect in your actual environment to create real, exploitable exposure.
Which exposures truly matter? Can attackers exploit them? Are our...
© HackerNews 2026
© Sector News
27.01.2026
Microsoft Office Zero-Day (CVE-2026-21509) - Emergency Patch Issued for Active Exploitation
News Preview
Microsoft on Monday issued out-of-band security patches for a high-severity Microsoft Office zero-day vulnerability exploited in attacks.
The vulnerability, tracked as CVE-2026-21509, carries a CVSS score of 7.8 out of 10.0. It has been described as a security feature bypass in Microsoft Office.
"Reliance on untrusted inputs in a security decision ...
© HackerNews 2026
© Sector News
27.01.2026
Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas
News Preview
A critical security flaw has been disclosed in Grist‑Core, an open-source, self-hosted version of the Grist relational spreadsheet-database, that could result in remote code execution.
The vulnerability, tracked as CVE-2026-24002 (CVSS score: 9.1), has been codenamed Cellbreak by Cyera Research Labs.
"One malicious formula can turn a spreadsheet in...
© HackerNews 2026
© Sector News
27.01.2026
China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023
News Preview
Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple environments.
The flexible framework has been put to use against Chinese gambling industries and malicious activities targeting Asian government entities and...
© HackerNews 2026
© Sector News
26.01.2026
Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware
News Preview
Cybersecurity researchers have discovered an ongoing campaign that's targeting Indian users with a multi-stage backdoor as part of a suspected cyber espionage campaign.
The activity, per the eSentire Threat Response Unit (TRU), involves using phishing emails impersonating the Income Tax Department of India to trick victims into downloading a malici...
© HackerNews 2026
© Sector News
26.01.2026
Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code
News Preview
Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor covert functionality to siphon developer data to China-based servers.
The extensions, which have 1.5 million combined installs and are still availabl...
© HackerNews 2026
© Sector News
26.01.2026
⚡ Weekly Recap: Firewall Flaws, AI-Built Malware, Browser Traps, Critical CVEs & More
News Preview
Security failures rarely arrive loudly. They slip in through trusted tools, half-fixed problems, and habits people stop questioning. This week’s recap shows that pattern clearly.
Attackers are moving faster than defenses, mixing old tricks with new paths. “Patched” no longer means safe, and every day, software keeps becoming the entry point.
What f...
© HackerNews 2026
© Sector News
26.01.2026
Winning Against AI-Based Attacks Requires a Combined Defensive Approach
News Preview
If there’s a constant in cybersecurity, it’s that adversaries are always innovating. The rise of offensive AI is transforming attack strategies and making them harder to detect. Google’s Threat Intelligence Group, recently reported on adversaries using Large Language Models (LLMs) to both conceal code and generate malicious scripts on the fly, lett...
© HackerNews 2026
© Sector News
26.01.2026
Konni Hackers Deploy AI-Generated PowerShell Backdoor Against Blockchain Developers
News Preview
The North Korean threat actor known as Konni has been observed using PowerShell malware generated using artificial intelligence (AI) tools to target developers and engineering teams in the blockchain sector.
The phishing campaign has targeted Japan, Australia, and India, highlighting the adversary's expansion of the targeting scope beyond South Kor...
© HackerNews 2026
© Sector News
24.01.2026
Multi-Stage Phishing Campaign Targets Russia with Amnesia RAT and Ransomware
News Preview
A new multi-stage phishing campaign has been observed targeting users in Russia with ransomware and a remote access trojan called Amnesia RAT.
"The attack begins with social engineering lures delivered via business-themed documents crafted to appear routine and benign," Fortinet FortiGuard Labs researcher Cara Lin said in a technical breakdown publ...
© HackerNews 2026
© Sector News
24.01.2026
New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector
News Preview
The Russian nation-state hacking group known as Sandworm has been attributed to what has been described as the "largest cyber attack" targeting Poland's power system in the last week of December 2025.
The attack was unsuccessful, the country's energy minister, Milosz Motyka, said last week.
"The command of the cyberspace forces has diagnosed in the...
© HackerNews 2026
© Sector News
24.01.2026
Who Approved This Agent? Rethinking Access, Accountability, and Risk in the Age of AI Agents
News Preview
AI agents are accelerating how work gets done. They schedule meetings, access data, trigger workflows, write code, and take action in real time, pushing productivity beyond human speed across the enterprise.
Then comes the moment every security team eventually hits:
“Wait… who approved this?”
Unlike users or applications, AI agen...
© HackerNews 2026
© Sector News
24.01.2026
CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog
News Preview
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw affecting Broadcom VMware vCenter Server that was patched in June 2024 to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The vulnerability in question is CVE-2024-37079 (CVSS score: 9.8), ...
© HackerNews 2026
© Sector News
23.01.2026
CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities
News Preview
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The list of vulnerabilities is as follows -
CVE-2025-68645 (CVSS score: 8.8) - A PHP remote file inclusion vulnerability in Synacor Zimbra C...
© HackerNews 2026
© Sector News
23.01.2026
Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls
News Preview
Fortinet has officially confirmed that it's working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports of fresh exploitation activity on fully-patched firewalls.
"In the last 24 hours, we have identified a number of cases where the exploit was to a device that had been fully upgraded to the latest release at t...
© HackerNews 2026
© Sector News
23.01.2026
TikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive Order
News Preview
TikTok on Friday officially announced that it formed a joint venture that will allow the hugely popular video-sharing application to continue operating in the U.S.
The new venture, named TikTok USDS Joint Venture LLC, has been established in compliance with the Executive Order signed by U.S. President Donald Trump in September 2025, the platform sa...
© HackerNews 2026
© Sector News
23.01.2026
Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access
News Preview
Cybersecurity researchers have disclosed details of a new dual-vector campaign that leverages stolen credentials to deploy legitimate Remote Monitoring and Management (RMM) software for persistent remote access to compromised hosts.
"Instead of deploying custom viruses, attackers are bypassing security perimeters by weaponizing the necessary IT too...
© HackerNews 2026
© Sector News
23.01.2026
Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms
News Preview
Microsoft has warned of a multi‑stage adversary‑in‑the‑middle (AitM) phishing and business email compromise (BEC) campaign targeting multiple organizations in the energy sector.
"The campaign abused SharePoint file‑sharing services to deliver phishing payloads and relied on inbox rule creation to maintain persistence and evade user awareness," the ...
© HackerNews 2026
© Sector News
22.01.2026
New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack
News Preview
Cybersecurity researchers have disclosed details of a new ransomware family called Osiris that targeted a major food service franchisee operator in Southeast Asia in November 2025.
The attack leveraged a malicious driver called POORTRY as part of a known technique referred to as bring your own vulnerable driver (BYOVD) to disarm security software, ...
© HackerNews 2026
© Sector News
22.01.2026
Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access
News Preview
A critical security flaw has been disclosed in the GNU InetUtils telnet daemon (telnetd) that went unnoticed for nearly 11 years.
The vulnerability, tracked as CVE-2026-24061, is rated 9.8 out of 10.0 on the CVSS scoring system. It affects all versions of GNU InetUtils from version 1.9.3 up to and including version 2.7.
"Telnetd in GNU Inetutils th...
© HackerNews 2026
© Sector News
22.01.2026
ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories
News Preview
Most of this week’s threats didn’t rely on new tricks. They relied on familiar systems behaving exactly as designed, just in the wrong hands. Ordinary files, routine services, and trusted workflows were enough to open doors without forcing them.
What stands out is how little friction attackers now need. Some activity focused on quiet reach and cove...
© HackerNews 2026
© Sector News
22.01.2026
Filling the Most Common Gaps in Google Workspace Security
News Preview
Security teams at agile, fast-growing companies often have the same mandate: secure the business without slowing it down. Most teams inherit a tech stack optimized for breakneck growth, not resilience. In these environments, the security team is the helpdesk, the compliance expert, and the incident response team all rolled into one.
Securing the cl...
© HackerNews 2026
© Sector News
22.01.2026
Malicious PyPI Package Impersonates SymPy, Deploys XMRig Miner on Linux Hosts
News Preview
A new malicious package discovered in the Python Package Index (PyPI) has been found to impersonate a popular library for symbolic mathematics to deploy malicious payloads, including a cryptocurrency miner, on Linux hosts.
The package, named sympy-dev, mimics SymPy, replicating the latter's project description verbatim in an attempt to deceive unsu...
© HackerNews 2026
© Sector News
22.01.2026
SmarterMail Auth Bypass Exploited in the Wild Two Days After Patch Release
News Preview
A new security flaw in SmarterTools SmarterMail email software has come under active exploitation in the wild, two days after the release of a patch.
The vulnerability, which currently does not have a CVE identifier, is tracked by watchTowr Labs as WT-2026-0001. It was patched by SmarterTools on January 15, 2026, with Build 9511, following responsi...
© HackerNews 2026
© Sector News
22.01.2026
Automated FortiGate Attacks Exploit FortiCloud SSO to Alter Firewall Configurations
News Preview
Cybersecurity company Arctic Wolf has warned of a "new cluster of automated malicious activity" that involves unauthorized firewall configuration changes on Fortinet FortiGate devices.
The activity, it said, commenced on January 15, 2026, adding it shares similarities with a December 2025 campaign in which malicious SSO logins on FortiGate applianc...
© HackerNews 2026
© Sector News
22.01.2026
Cisco Fixes Actively Exploited Zero-Day CVE-2026-20045 in Unified CM and Webex
News Preview
Cisco has released fresh patches to address what it described as a "critical" security vulnerability impacting multiple Unified Communications (CM) products and Webex Calling Dedicated Instance that it has been actively exploited as a zero-day in the wild.
The vulnerability, CVE-2026-20045 (CVSS score: 8.2), could permit an unauthenticated remote a...
© HackerNews 2026
© Sector News
21.01.2026
North Korean PurpleBravo Campaign Targeted 3,136 IP Addresses via Fake Job Interviews
News Preview
As many as 3,136 individual IP addresses linked to likely targets of the Contagious Interview activity have been identified, with the campaign claiming 20 potential victim organizations spanning artificial intelligence (AI), cryptocurrency, financial services, IT services, marketing, and software development sectors in Europe, South Asia, the Middl...
© HackerNews 2026
© Sector News
21.01.2026
Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws
News Preview
Zoom and GitLab have released security updates to resolve a number of security vulnerabilities that could result in denial-of-service (DoS) and remote code execution.
The most severe of the lot is a critical security flaw impacting Zoom Node Multimedia Routers (MMRs) that could permit a meeting participant to conduct remote code execution attacks. ...
© HackerNews 2026
© Sector News
21.01.2026
Webinar: How Smart MSSPs Using AI to Boost Margins with Half the Staff
News Preview
Every managed security provider is chasing the same problem in 2026 — too many alerts, too few analysts, and clients demanding “CISO-level protection” at SMB budgets.
The truth? Most MSSPs are running harder, not smarter. And it’s breaking their margins. That’s where the quiet revolution is happening: AI isn’t just writing reports or surfacing risk...
© HackerNews 2026
© Sector News
21.01.2026
Exposure Assessment Platforms Signal a Shift in Focus
News Preview
Gartner® doesn’t create new categories lightly. Generally speaking, a new acronym only emerges when the industry's collective "to-do list" has become mathematically impossible to complete. And so it seems that the introduction of the Exposure Assessment Platforms (EAP) category is a formal admission that traditional Vulnerability Management (VM) is...
© HackerNews 2026
© Sector News
21.01.2026
Chainlit AI Framework Flaws Enable Data Theft via File Read and SSRF Bugs
News Preview
Security vulnerabilities were uncovered in the popular open-source artificial intelligence (AI) framework Chainlit that could allow attackers to steal sensitive data, which may allow for lateral movement within a susceptible organization.
Zafran Security said the high-severity flaws, collectively dubbed ChainLeak, could be abused to leak cloud envi...
© HackerNews 2026
© Sector News
21.01.2026
VoidLink Linux Malware Framework Built with AI Assistance Reaches 88,000 Lines of Code
News Preview
The recently discovered sophisticated Linux malware framework known as VoidLink is assessed to have been developed by a single person with assistance from an artificial intelligence (AI) model.
That's according to new findings from Check Point Research, which identified operational security blunders by malware's author that provided clues to its de...
© HackerNews 2026
© Sector News
21.01.2026
LastPass Warns of Fake Maintenance Messages Targeting Users’ Master Passwords
News Preview
LastPass is alerting users to a new active phishing campaign that's impersonating the password management service, which aims to trick users into giving up their master passwords.
The campaign, which began on or around January 19, 2026, involves sending phishing emails claiming upcoming maintenance and urging them to create a local backup of their ...
© HackerNews 2026
© Sector News
21.01.2026
CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution
News Preview
A security vulnerability has been disclosed in the popular binary-parser npm library that, if successfully exploited, could result in the execution of arbitrary JavaScript.
The vulnerability, tracked as CVE-2026-1245 (CVSS score: 6.5), affects all versions of the module prior to version 2.3.0, which addresses the issue. Patches for the flaw were re...
© HackerNews 2026
© Sector News
20.01.2026
North Korea-Linked Hackers Target Developers via Malicious VS Code Projects
News Preview
The North Korean threat actors associated with the long-running Contagious Interview campaign have been observed using malicious Microsoft Visual Studio Code (VS Code) projects as lures to deliver a backdoor on compromised endpoints.
The latest finding demonstrates continued evolution of the new tactic that was first discovered in December 2025, Ja...
© HackerNews 2026
© Sector News
20.01.2026
Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution
News Preview
A set of three security vulnerabilities has been disclosed in mcp-server-git, the official Git Model Context Protocol (MCP) server maintained by Anthropic, that could be exploited to read or delete arbitrary files and execute code under certain conditions.
"These flaws can be exploited through prompt injection, meaning an attacker who can influence...
© HackerNews 2026
© Sector News
20.01.2026
Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading
News Preview
Cybersecurity researchers have uncovered a new phishing campaign that exploits social media private messages to propagate malicious payloads, likely with the intent to deploy a remote access trojan (RAT).
The activity delivers "weaponized files via Dynamic Link Library (DLL) sideloading, combined with a legitimate, open-source Python pen-testing sc...
© HackerNews 2026
© Sector News
20.01.2026
The Hidden Risk of Orphan Accounts
News Preview
The Problem: The Identities Left Behind
As organizations grow and evolve, employees, contractors, services, and systems come and go - but their accounts often remain. These abandoned or “orphan” accounts sit dormant across applications, platforms, assets, and cloud consoles.
The reason they persist isn’t negligence - it’s fragmentation.
Tradi...
© HackerNews 2026
© Sector News
20.01.2026
Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto
News Preview
Cybersecurity researchers have disclosed details of a malware campaign that's targeting software developers with a new information stealer called Evelyn Stealer by weaponizing the Microsoft Visual Studio Code (VS Code) extension ecosystem.
"The malware is designed to exfiltrate sensitive information, including developer credentials and cryptocurren...
© HackerNews 2026
© Sector News
20.01.2026
Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers
News Preview
Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment (ACME) validation logic that made it possible to bypass security controls and access origin servers.
"The vulnerability was rooted in how our edge network processed requests destined for the ACME HTTP-01 challenge path (/.well-known/ac...
© HackerNews 2026
© Sector News
20.01.2026
Why Secrets in JavaScript Bundles are Still Being Missed
News Preview
Leaked API keys are no longer unusual, nor are the breaches that follow. So why are sensitive tokens still being so easily exposed?
To find out, Intruder’s research team looked at what traditional vulnerability scanners actually cover and built a new secrets detection method to address gaps in existing approaches.
Applying this at scale by sc...
© HackerNews 2026
