资讯

The Hacker News15 小时
Email Security Is Stuck in the Antivirus Era: Why It Needs a Modern Approach
Legacy email filters miss post-delivery threats in Microsoft 365 and Google Workspace, exposing data. Here's how EDR-style ...
The Hacker News10 小时
Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads
In what's the latest instance of a software supply chain attack, unknown threat actors managed to compromise Toptal's GitHub ...
The Hacker News23 小时
Critical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems Worldwide
Tridium Niagara flaws expose critical infrastructure to takeover if misconfigured, affecting security and system uptime.
The Hacker News21 小时
Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
Scattered Spider targets VMware ESXi in fast, stealthy ransomware attacks across U.S. retail and airline sectors.
The Hacker News21 小时
EDR Detects, EPM Prevents. Why Using Both is a Winning Formula for Modern Endpoint Protection
This is why Endpoint Detection and Response (EDR) is really only one piece of the endpoint protection puzzle. It offers key ...
The Hacker News4 天
CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing
CastleLoader malware infected 469 devices via ClickFix, GitHub, and phishing since May 2025. Malware delivery is evolving ...
The Hacker News4 天
Fire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter Environments
Fire Ant's breach of the virtualization management layer is achieved by the exploitation of CVE-2023-34048, a known security ...
The Hacker News3 天
Overcoming Risks from Chinese GenAI Tool Usage
China-based GenAI tools used by 1,059 employees exposed sensitive enterprise data, raising global compliance concerns.
The Hacker News10 天
From Backup to Cyber Resilience: Why IT Leaders Must Rethink Backup in the Age of Ransomware
This article discusses why IT leaders must think beyond backup and embrace cyber resilience to survive and thrive in the ...
The Hacker News5 天
Threat Actor Mimo Targets Magento and Docker to Deploy Crypto Miners and Proxyware
The activity has been attributed to a threat actor tracked as Mimo (aka Hezb), which has a long history of leveraging N-day ...
The Hacker News4 天
Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access
Malware hidden in WordPress mu-plugins grants attackers full access and admin control, putting websites and users at serious ...
The Hacker News5 天
CISA Warns: SysAid Flaws Under Active Attack Enable Remote File Access and SSRF
The cybersecurity firm noted that the vulnerabilities could allow attackers to inject unsafe XML entities into the web ...