[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.] #  @TheHackersNews The Hacker News Multiple high-profile hacking incidents and vulnerabilities have been recently reported. North Korean hackers are using fake job interviews to spread malware, while Chinese hackers are targeting governments and defense contractors using various backdoors and exploits. Additionally, critical flaws have been discovered in various software, including Cisco VPN gear, SolarWinds Web Help Desk, and Supermicro BMC, which could allow attackers to gain unauthorized access. ### Engagements: XXXXXXX [#](/creator/twitter::209811713/interactions)  - X Week XXXXXXXXX +30% - X Month XXXXXXXXX +52% - X Months XXXXXXXXXX +91% - X Year XXXXXXXXXX +61% ### Mentions: XX [#](/creator/twitter::209811713/posts_active)  - X Week XXX -XXXX% - X Month XXX -XXXX% - X Months XXXXX +15% - X Year XXXXX +62% ### Followers: XXXXXXXXXXX [#](/creator/twitter::209811713/followers)  - X Week XXXXXXX +0.39% - X Month XXXXXXX +0.21% - X Months XXXXXXX +1.60% - X Year XXXXXXX +1.80% ### CreatorRank: XXXXXXX [#](/creator/twitter::209811713/influencer_rank)  ### Social Influence **Social category influence** [technology brands](/list/technology-brands) XXXXX% [stocks](/list/stocks) #3064 [countries](/list/countries) XXXXX% [finance](/list/finance) #6180 [social networks](/list/social-networks) XXXX% [cryptocurrencies](/list/cryptocurrencies) #1246 **Social topic influence** [ai](/topic/ai) #5557, [bug](/topic/bug) #102, [$googl](/topic/$googl) #503, [crypto](/topic/crypto) #1178, [android](/topic/android) #434, [china](/topic/china) #3898, [cloudflare](/topic/cloudflare) #51, [india](/topic/india) 2.38%, [github](/topic/github) #115, [hidden](/topic/hidden) XXXX% **Top accounts mentioned or mentioned by** [@the_satyadvv](/creator/undefined) [@king_michael_f](/creator/undefined) [@dcicybersecnews](/creator/undefined) [@jackgoesvirtual](/creator/undefined) [@darkwingfella](/creator/undefined) [@780thc](/creator/undefined) [@brav0charlie](/creator/undefined) [@edwardhorigin](/creator/undefined) [@arnavsharma](/creator/undefined) [@wagnerfinance](/creator/undefined) [@readyornottr](/creator/undefined) [@spoogemanghost](/creator/undefined) [@namedxbird](/creator/undefined) [@adriftfuriously](/creator/undefined) [@tompick](/creator/undefined) [@nikplayscode](/creator/undefined) [@reliaquest](/creator/undefined) [@saviour123](/creator/undefined) [@supermatrix669](/creator/undefined) [@drumcryptochris](/creator/undefined) **Top assets mentioned** [Alphabet Inc Class A (GOOGL)](/topic/$googl) [Cloudflare, Inc. (NET)](/topic/cloudflare) [Solana (SOL)](/topic/solana) [Microsoft Corp. (MSFT)](/topic/microsoft) [Ethereum (ETH)](/topic/ethereum) [Crowdstrike Holdings Inc (CRWD)](/topic/crowdstrike) [Bitcoin (BTC)](/topic/bitcoin) ### Top Social Posts Top posts by engagements in the last XX hours "GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11000+ Infections" [X Link](https://thehackernews.com/2025/12/goldfactory-hits-southeast-asia-with.html) 2025-12-04T09:32Z 228.6M followers, 16.1K engagements "Iran-Linked Hackers Hit Israeli Sectors with New MuddyViper Backdoor in Targeted Attacks" [X Link](https://thehackernews.com/2025/12/iran-linked-hackers-hits-israeli.html) 2025-12-02T11:01Z 228.6M followers, 32.3K engagements "Second Sha1-Hulud Wave Affects 25000+ Repositories via npm Preinstall Credential Theft" [X Link](https://thehackernews.com/2025/11/second-sha1-hulud-wave-affects-25000.html) 2025-11-24T13:06Z 228.6M followers, 80K engagements "π₯ New npm attack DETECTED A campaign dubbed Sha1-Hulud: The Second Coming has compromised hundreds of packages and over 25000 GitHub repos. The code runs during install steals cloud logins and if that fails it deletes the users home folder. Read more" [X Link](https://x.com/TheHackersNews/status/1992942787462144471) 2025-11-24T13:06Z 936.7K followers, 80K engagements "π¨ Iranian hackers are attacking Israeli networks with a new tool called MuddyViper. The group MuddyWater used fake emails and VPN bugs to break into systems in tech transport and utilities. MuddyViper can steal passwords browser data and control infected computers while pretending to be the Snake game. Read more" [X Link](https://x.com/TheHackersNews/status/1995810589135057049) 2025-12-02T11:01Z 936.7K followers, 32.3K engagements "β URGENT: A 10.0-severity bug just hit React Server Components and Next.js. It lets anyone run code on your server even without logging in. π Details β Fix: update to patched versions now" [X Link](https://x.com/TheHackersNews/status/1996283268636053514) 2025-12-03T18:19Z 936.7K followers, 109.4K engagements "Over 968000 servers may be vulnerable to React2shell (CVE-2025-55182 / 66478). Wiz: XX% of cloud environments still exposed. Endor Labs: No special setup needed. Default configs are exploitable. Its live its easy to weaponize patch or block now. π Read:" [X Link](https://x.com/TheHackersNews/status/1996438873048818163) 2025-12-04T04:38Z 936.7K followers, 7393 engagements "π¨ Thousands hacked after downloading what looked like official government apps. They were fake versions of real banking apps modified by hackers from GoldFactory to include malware. So far over 11000 phones in Southeast Asia have been infected. π Details" [X Link](https://x.com/TheHackersNews/status/1996512909153775936) 2025-12-04T09:32Z 936.7K followers, 16K engagements "π¨ WARNING: A new attack can trick Perplexitys Comet browser into deleting your Google Drive. Just one normal-looking email with hidden cleanup instructions can make the AI agent erase real files no exploit no warning. π Details here" [X Link](https://x.com/TheHackersNews/status/1997002106327519522) 2025-12-05T17:56Z 936.7K followers, 22.8K engagements "ThreatsDay Bulletin: Wi-Fi Hack npm Worm DeFi Theft Phishing Blasts— and XX More Stories" [X Link](https://thehackernews.com/2025/12/threatsday-bulletin-wi-fi-hack-npm-worm.html) 2025-12-03T22:30Z 228.6M followers, 32.9K engagements "Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation" [X Link](https://thehackernews.com/2025/12/critical-react2shell-flaw-added-to-cisa.html) 2025-12-06T11:46Z 228.6M followers, 17.2K engagements "⚡ Weekly Recap: USB Malware React2Shell WhatsApp Worms AI IDE Bugs & More" [X Link](https://thehackernews.com/2025/12/weekly-recap-usb-malware-react2shell.html) 2025-12-08T14:31Z 228.6M followers, 10.2K engagements "North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware" [X Link](https://thehackernews.com/2025/12/north-korea-linked-actors-exploit.html) 2025-12-09T18:29Z 228.6M followers, 15.2K engagements "Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China" [X Link](https://thehackernews.com/2025/12/silver-fox-uses-fake-microsoft-teams.html) 2025-12-04T17:26Z 228.6M followers, 13.5K engagements "Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika Requires Urgent Patch" [X Link](https://thehackernews.com/2025/12/critical-xxe-bug-cve-2025-66516-cvss.html) 2025-12-05T16:26Z 228.6M followers, 27.6K engagements "π¨ UPDATE: The RCE flaw in React Server Components now has a name React2shell (CVE-2025-55182). Experts warn its a master key exploit attackers can run any code just by sending a crafted HTTP request. No login needed. π Read:" [X Link](https://x.com/TheHackersNews/status/1996438456747307153) 2025-12-04T04:36Z 936.7K followers, 17.1K engagements "π Cloudflare faced a short outage today after pushing a fix for the new React2Shell (CVE-2025-55182) flaw. The update caused XXX errors across sites. Cloudflare says it wasnt an attack just a bad WAF change made to block the React bug. π Read:" [X Link](https://x.com/TheHackersNews/status/1996976898929578085) 2025-12-05T16:16Z 936.7K followers, 19.9K engagements "CISA added the new 10.0-rated React RCE flaw (CVE-2025-55182) to its exploited list. π Exploited within hours by Chinese hackers. π₯ Affects Next.js React Router Vite Waku & more. π° Some attacks dropped crypto-miners & stole AWS creds. π Read:" [X Link](https://x.com/TheHackersNews/status/1997271368614973544) 2025-12-06T11:46Z 936.7K followers, 17.2K engagements "ShinyHunters. Salesloft Drift. Gainsight. Different breaches same playbook: Abused OAuth trust Exploited integrations Targeted non-human identities Still think Salesforce is just another app Attackers dont theyre hitting the entire SaaS supply chain. π Read the white paper" [X Link](https://x.com/TheHackersNews/status/1996233231482728670) 2025-12-03T15:01Z 936.7K followers, 41.3K engagements "π¨ Critical Apache Tika flaw (CVE-2025-66516) just dropped CVSS XXXX. A single fake PDF can trigger an XXE attack letting hackers read server files or run code. π Read Update to v3.2.2 now" [X Link](https://x.com/TheHackersNews/status/1996979395081507164) 2025-12-05T16:26Z 936.7K followers, 13.5K engagements "Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution" [X Link](https://thehackernews.com/2025/12/critical-rsc-bugs-in-react-and-nextjs.html) 2025-12-03T18:19Z 228.6M followers, 152K engagements "Android Malware FvncBot SeedSnatcher and ClayRat Gain Stronger Data Theft Features" [X Link](https://thehackernews.com/2025/12/android-malware-fvncbot-seedsnatcher.html) 2025-12-08T11:02Z 228.6M followers, 40K engagements "Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs" [X Link](https://thehackernews.com/2025/11/chinese-ai-model-deepseek-r1-generates.html) 2025-11-24T11:11Z 228.6M followers, 26.1K engagements "Record XXXX Tbps DDoS Attack Linked to AISURU Botnet with up to X Million Infected Hosts" [X Link](https://thehackernews.com/2025/12/record-297-tbps-ddos-attack-linked-to.html) 2025-12-04T07:05Z 228.6M followers, 103.2K engagements "Iran-Linked Hackers Hit Israeli Sectors with New MuddyViper Backdoor in Targeted Attacks" [X Link](https://thehackernews.com/2025/12/iran-linked-hackers-hits-israeli_2.html) 2025-12-09T20:40Z 228.6M followers, XX engagements "Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails" [X Link](https://thehackernews.com/2025/12/zero-click-agentic-browser-attack-can.html) 2025-12-05T17:56Z 228.6M followers, 22.9K engagements "Google Adds Layered Defenses to Chrome to Block Indirect Prompt Injection Threats" [X Link](https://thehackernews.com/2025/12/google-adds-layered-defenses-to-chrome.html) 2025-12-09T11:29Z 228.6M followers, 10.9K engagements "ShadyPanda Turns Popular Browser Extensions with XXX Million Installs Into Spyware" [X Link](https://thehackernews.com/2025/12/shadypanda-turns-popular-browser.html) 2025-12-01T17:34Z 228.6M followers, 54.5K engagements "How to Streamline Zero Trust Using the Shared Signals Framework" [X Link](https://thehackernews.com/2025/12/how-to-streamline-zero-trust-using.html) 2025-12-09T13:17Z 228.6M followers, 8309 engagements "Fortinet FortiWeb Flaw Actively Exploited in the Wild Before Company's Silent Patch" [X Link](https://thehackernews.com/2025/11/fortinet-fortiweb-flaw-actively.html) 2025-11-14T09:01Z 228.6M followers, 90K engagements "Self-Spreading 'GlassWorm' Infects VS Code Extensions in Widespread Supply Chain Attack" [X Link](https://thehackernews.com/2025/10/self-spreading-glassworm-infects-vs.html) 2025-10-24T09:17Z 228.6M followers, 45.9K engagements "CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems" [X Link](https://thehackernews.com/2025/12/cisa-reports-prc-hackers-using.html) 2025-12-05T08:15Z 228.6M followers, 22.6K engagements "π¨ New Android malware Albiriox is being sold as a service. It can remotely control phones stream screens from banking apps and fake updates to steal logins. It even bypasses Androids screen protections. Read about it here Spread via fake Google Play links its already targeting users in Austria" [X Link](https://x.com/TheHackersNews/status/1995416260105113627) 2025-12-01T08:54Z 936.7K followers, 21K engagements "πΌ ShadyPanda quietly turned trusted Chrome and Edge extensions into spyware. Over XXX million installs in X years some were even once verified by Google. After silent updates in mid-2024 they began sending users browsing data and cookies to remote servers. π Read here" [X Link](https://x.com/TheHackersNews/status/1995546949622399289) 2025-12-01T17:34Z 936.7K followers, 30K engagements "πͺ North Korean hackers got caught live by fake laptops. Researchers from BCA LTD NorthScan and ANYRUN set a trap for Lazarus Groups Famous Chollima team. The hackers thought they were working real remote tech jobs. But the laptops were fake built to watch their actions safely. Read the full story" [X Link](https://x.com/TheHackersNews/status/1995888781233455408) 2025-12-02T16:12Z 936.7K followers, 128.1K engagements "β Brazil under dual attack. Water Saci is spreading a banking trojan through a WhatsApp-based worm while RelayNFC is running an Android NFC relay campaign that steals contactless payment data. Both threats use social engineering and target Brazilian users. π Read details:" [X Link](https://x.com/TheHackersNews/status/1996241882717069513) 2025-12-03T15:35Z 936.7K followers, 194.6K engagements "π¨ Cloudflare just stopped the largest DDoS attack ever a XXXX Tbps strike from the AISURU botnet that used up to X million hacked devices. It hit 15000 ports every second for XX seconds before being blocked. π Details:" [X Link](https://x.com/TheHackersNews/status/1996476004232319043) 2025-12-04T07:05Z 936.7K followers, 103.2K engagements "π¨ CISA just warned about a new Chinese state-backed hack tool called BRICKSTORM a backdoor found in VMware and Windows systems used by U.S. government and tech networks. It can reinstall itself if removed hide in normal traffic and give hackers full remote control. πRead" [X Link](https://x.com/TheHackersNews/status/1996856041292845383) 2025-12-05T08:15Z 936.7K followers, 22.5K engagements "β Hackers are exploiting a bug in the Sneeit Framework plugin (CVE-2025-6389) to run code on servers and create admin accounts on WordPress sites. β Separately a flaw in ICTBroadcast (CVE-2025-2611) lets attackers use the BROADCAST cookie for unauthenticated remote shell access on exposed hosts. π Read" [X Link](https://x.com/TheHackersNews/status/1997958786284392654) 2025-12-08T09:17Z 936.7K followers, 20.1K engagements "β Three new Android threats just dropped: FvncBot fake mBank app that logs keys streams screens and steals banking data. SeedSnatcher spreads via Telegram to steal crypto seed phrases and 2FA codes. ClayRat upgraded spyware faking YouTube & taxi apps for full device control. All abuse Androids accessibility features. π Read here" [X Link](https://x.com/TheHackersNews/status/1997985064668614800) 2025-12-08T11:02Z 936.7K followers, 39.9K engagements "Catch the the latest #CybersecurityRecap for: π₯ USB drives spreading crypto miners. π° Fake investment sites busted. π CastleRAT creeping through networks. β Portugal shields ethical hackers. πΈ Ransomware payouts falling fast. π Get the full stories latest tools and expert webinars in the latest recap:" [X Link](https://x.com/TheHackersNews/status/1998042298920165807) 2025-12-08T14:49Z 936.7K followers, 10.1K engagements "π₯ You can win $20K for breaking Googles new Chrome security feature. Google just added the User Alignment Critic a safeguard that uses a second model to double-check Chromes AI agent and block prompt attacks or data leaks. π Read:" [X Link](https://x.com/TheHackersNews/status/1998354426487316810) 2025-12-09T11:29Z 936.7K followers, 10.9K engagements "π‘ Most Zero Trust tools still dont talk to each other so access decisions lag behind real risks. A MongoDB engineer built a workflow using Tines that lets Kolide send real-time device alerts to Okta through the Shared Signals Framework. Finally Zero Trust that actually works in sync. π Read:" [X Link](https://x.com/TheHackersNews/status/1998381386923901109) 2025-12-09T13:17Z 936.7K followers, 8309 engagements "Google to Verify All Android Developers in X Countries to Block Malicious Apps" [X Link](https://thehackernews.com/2025/08/google-to-verify-all-android-developers.html) 2025-08-26T06:29Z 228.6M followers, 7M engagements "Malicious Rust Crate Delivers OS-Specific Malware to Web3 Developer Systems" [X Link](https://thehackernews.com/2025/12/malicious-rust-crate-delivers-os.html) 2025-12-06T01:26Z 228.6M followers, XX engagements "North Korean Hackers Deploy XXX npm Packages to Spread Updated OtterCookie Malware" [X Link](https://thehackernews.com/2025/11/north-korean-hackers-deploy-197-npm.html) 2025-11-28T16:19Z 228.6M followers, 21.8K engagements "The Death of the Security Checkbox: BAS Is the Power Behind Real Defense" [X Link](https://thehackernews.com/2025/10/the-death-of-security-checkbox-bas-is.html) 2025-12-08T17:13Z 228.6M followers, XX engagements "5 Threats That Reshaped Web Security This Year 2025" [X Link](https://thehackernews.com/2025/12/5-threats-that-reshaped-web-security.html) 2025-12-04T12:03Z 228.6M followers, 13K engagements "Experts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RAT" [X Link](https://thehackernews.com/2025/12/experts-confirm-jssmuggler-uses.html) 2025-12-08T20:26Z 228.6M followers, XX engagements "Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks" [X Link](https://thehackernews.com/2025/12/researchers-uncover-30-flaws-in-ai.html) 2025-12-07T00:14Z 228.6M followers, XXX engagements "ShadowPad Malware Actively Exploits WSUS Vulnerability for Full System Access" [X Link](https://thehackernews.com/2025/11/shadowpad-malware-actively-exploits.html) 2025-11-24T07:20Z 936.1K followers, 116.6K engagements "India Orders Phone Makers to Pre-Install Sanchar Saathi App to Tackle Telecom Fraud" [X Link](https://thehackernews.com/2025/12/india-orders-phone-makers-to-pre.html) 2025-12-01T17:56Z 228.6M followers, 25.5K engagements "Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools" [X Link](https://thehackernews.com/2025/11/webinar-learn-to-spot-risks-and-patch.html) 2025-11-26T11:38Z 228.6M followers, 51.9K engagements "APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1000+ Domains" [X Link](https://thehackernews.com/2025/11/apt24-deploys-badaudio-in-years-long.html) 2025-11-21T10:44Z 935.9K followers, 26.5K engagements "CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV" [X Link](https://thehackernews.com/2025/11/cisa-adds-actively-exploited-xss-bug.html) 2025-11-30T09:25Z 228.6M followers, 22.7K engagements "Webinar: The "Agentic" Trojan Horse: Why the New AI Browsers War is a Nightmare for Security Teams" [X Link](https://thehackernews.com/2025/12/webinar-agentic-trojan-horse-why-new-ai.html) 2025-12-01T12:18Z 228.6M followers, 52.8K engagements "Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets" [X Link](https://thehackernews.com/2025/12/tomiris-shifts-to-public-service.html) 2025-12-01T05:09Z 228.6M followers, 16.1K engagements "Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan" [X Link](https://thehackernews.com/2025/11/bloody-wolf-expands-java-based.html) 2025-11-27T18:13Z 228.6M followers, 15.5K engagements "Active Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under Attack" [X Link](https://thehackernews.com/2025/10/active-exploits-hit-dassault-and-xwiki.html) 2025-10-29T08:12Z 228.6M followers, 12.3K engagements "India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and Misuse" [X Link](https://thehackernews.com/2025/12/india-orders-messaging-apps-to-work.html) 2025-12-02T17:48Z 228.6M followers, 29.4K engagements "ThreatsDay Bulletin: 0-Days LinkedIn Spies Crypto Crimes IoT Flaws and New Malware Waves" [X Link](https://thehackernews.com/2025/11/threatsday-bulletin-0-days-linkedin.html) 2025-11-20T12:45Z 935.6K followers, 82.8K engagements "Qilin Ransomware Turns South Korean MSP Breach Into 28-Victim 'Korean Leaks' Data Heist" [X Link](https://thehackernews.com/2025/11/qilin-ransomware-turns-south-korean-msp.html) 2025-11-26T14:33Z 228.6M followers, 24.7K engagements "π Important: Google is locking down Android. Starting Sept 2026 every app even outside the Play Store must come from a verified developer. No more anonymous sideloads. No quick comebacks for malware gangs. First up: Brazil Indonesia Singapore Thailand. Full story" [X Link](https://x.com/TheHackersNews/status/1960228063834419611) 2025-08-26T06:29Z 936.7K followers, 7M engagements "π¨ CISA confirmed ACTIVE exploitation of new flaws in Dassault Systmes DELMIA Apriso and XWiki. One lets any guest run code. Another gives full admin access. Hackers are already dropping crypto miners. Agencies have until Nov XX to patch" [X Link](https://x.com/TheHackersNews/status/1983446906144747872) 2025-10-29T08:12Z 936.5K followers, 11.6K engagements "π° Crypto mixer founders jailed. Samourai Wallets Keonne Rodriguez and William Hill got X and X years for laundering $237M through Bitcoin tools Whirlpool and Ricochet. Funds came from drugs fraud hacks even murder-for-hire" [X Link](https://x.com/TheHackersNews/status/1992195847724163146) 2025-11-22T11:37Z 935.6K followers, 16.5K engagements "β Hackers love community update tools. Why Because anyone can upload a package. One bad update = hacked systems. π Join our free live webinar with Action1 CTO Gene Moody see how to patch safely without slowing down. Save your spot" [X Link](https://x.com/TheHackersNews/status/1993645508414575079) 2025-11-26T11:38Z 936K followers, 51.6K engagements "π₯ Hackers hit South Koreas banks through one IT vendor spreading Qilin ransomware to XX firms and stealing X TB of data. Evidence suggests Russian and North Korean groups worked together. Full story" [X Link](https://x.com/TheHackersNews/status/1993689495494156541) 2025-11-26T14:33Z 935.8K followers, 21.1K engagements "Hackers posing as Kyrgyzstans Justice Ministry are spreading 2013-era NetSupport RAT across Kyrgyzstan and Uzbekistan using fake PDFs and old Java tricksblocking outsiders to hide the attack. Old tools. New victims" [X Link](https://x.com/TheHackersNews/status/1994107304418136276) 2025-11-27T18:13Z 935.7K followers, 13.5K engagements "π¨ North Korean hackers uploaded XXX malicious npm packages (31K+ downloads). They drop a new OtterCookie variant that steals passwords crypto data and screenshots all from a fake job interview setup. Details here" [X Link](https://x.com/TheHackersNews/status/1994440919207362913) 2025-11-28T16:19Z 935.8K followers, 18.7K engagements "π¨ CISA added a real-world exploited flaw in OpenPLC ScadaBR to its Known Exploited Vulnerabilities list. Hackers used the bug (CVE-2021-26829) to deface a fake water plant system in under XX hours disabling logs and alarms. Read" [X Link](https://x.com/TheHackersNews/status/1995061576085410210) 2025-11-30T09:25Z 936.4K followers, 22.2K engagements "π¨ Tomiris is back and harder to spot. Kaspersky reports the group is using Telegram & Discord as C2 servers to hide attacks on government networks in Russia & Central Asia. Its new malware written in Python Rust Go PowerShell & C#. Full details" [X Link](https://x.com/TheHackersNews/status/1995359635734417825) 2025-12-01T05:09Z 935.6K followers, 14.5K engagements "π¨ The browser just became your riskiest employee. New AI browsers like ChatGPT Atlas can act on your behalf booking buying sending data. One hidden command can turn them against you. Join this expert webinar to learn how to spot and stop these new AI browser threats" [X Link](https://x.com/TheHackersNews/status/1995467541880414495) 2025-12-01T12:18Z 936.1K followers, 52.8K engagements "π’ URGENT: India just made a cybersecurity app mandatory on all new phones. The app Sanchar Saathi cant be deleted or disabled. It helps report fraud trace lost devices and block illegal calls. Full story" [X Link](https://x.com/TheHackersNews/status/1995552642811277645) 2025-12-01T17:56Z 935.8K followers, 24.8K engagements "π± India now requires messaging apps like WhatsApp Telegram and Signal to stay linked to an active SIM card. Web sessions will auto-logout every X hours. Goal stop ghost sessions used for scams and fraud. π Details" [X Link](https://x.com/TheHackersNews/status/1995913098843296198) 2025-12-02T17:48Z 936.4K followers, 29.4K engagements "React2shell doesnt stop at React or Next.js. Any library bundling RSCVite Parcel RedwoodJS Wakuis likely exposed. Cloudflare added WAF protection for proxied apps but self-hosted ones stay at risk" [X Link](https://x.com/TheHackersNews/status/1996438604856594549) 2025-12-04T04:37Z 936.4K followers, 7051 engagements "π€π₯ AI-built code just broke web security in 2025. One bug in a vibe coding platform let anyone access private apps no login needed. β XX% of AI-written code had exploitable flaws. π’ Even big firms like Wix had to patch fast. The fix Treat all AI code as untrusted. π Read here" [X Link](https://x.com/TheHackersNews/status/1996550880414625823) 2025-12-04T12:03Z 936.4K followers, 12.9K engagements "π¨ A fake Microsoft Teams installer is spreading malware in China. Hackers called "Silver Fox" made it look like a Russian attack to hide their tracks. It installs ValleyRAT giving full remote access to victims. π Read:" [X Link](https://x.com/TheHackersNews/status/1996632279318515745) 2025-12-04T17:26Z 936.2K followers, 10.2K engagements "Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera" [X Link](https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html) 2025-12-02T15:16Z 228.6M followers, 212.6K engagements "New Albiriox MaaS Malware Targets 400+ Apps for On-Device Fraud and Screen Control" [X Link](https://thehackernews.com/2025/12/new-albiriox-maas-malware-targets-400.html) 2025-12-01T08:54Z 228.6M followers, 21.9K engagements "GlassWorm Returns with XX Malicious Extensions Impersonating Popular Developer Tools" [X Link](https://thehackernews.com/2025/12/glassworm-returns-with-24-malicious.html) 2025-12-02T15:03Z 228.6M followers, 61.2K engagements "Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks" [X Link](https://thehackernews.com/2025/12/sneeit-wordpress-rce-exploited-in-wild.html) 2025-12-08T09:17Z 228.6M followers, 20.2K engagements "GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs" [X Link](https://thehackernews.com/2025/11/glassworm-malware-discovered-in-three.html) 2025-11-10T08:53Z 228.6M followers, 92.6K engagements "Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild" [X Link](https://thehackernews.com/2025/11/fortinet-warns-of-new-fortiweb-cve-2025.html) 2025-11-19T04:23Z 228.6M followers, 21.1K engagements "Brazil Hit by Banking Trojan Spread via WhatsApp Worm and RelayNFC NFC Relay Fraud" [X Link](https://thehackernews.com/2025/12/brazil-hit-by-banking-trojan-spread-via.html) 2025-12-03T15:35Z 228.6M followers, 195.4K engagements "Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability" [X Link](https://thehackernews.com/2025/12/chinese-hackers-have-started-exploiting.html) 2025-12-05T14:11Z 228.6M followers, 34.7K engagements "Discover the AI Tools Fueling the Next Cybercrime Wave — Watch the Webinar" [X Link](https://thehackernews.com/2025/12/discover-ai-tools-fueling-next.html) 2025-12-03T16:42Z 228.6M followers, 14.2K engagements "40 npm Packages Compromised in Supply Chain Attack Using bundle.js to Steal Credentials" [X Link](https://thehackernews.com/2025/09/40-npm-packages-compromised-in-supply.html) 2025-09-16T05:02Z 228.6M followers, 278.7K engagements "π¨ GlassWorm is back. XX fake VS Code and Open VSX extensions are stealing developer credentials spreading through popular names like Flutter React and Tailwind. The malware hides its control data on the Solana blockchain and runs Rust implants on both Windows and macOS. π Read" [X Link](https://x.com/TheHackersNews/status/1995871527649325087) 2025-12-02T15:03Z 936.7K followers, 15K engagements "β‘ A 16-year-old with a $XXX allowance can now outsmart your email security. Tools like WormGPT FraudGPT and SpamGPT are automating cybercrime writing perfect CEO emails building fake sites and scaling attacks faster than filters can react. In this live session experts will break down how these tools work and how to stop them after someone clicks. π Secure your seat" [X Link](https://x.com/TheHackersNews/status/1996258648637759753) 2025-12-03T16:42Z 936.6K followers, 14.1K engagements "β Within HOURS of disclosure two China-linked hacking groups weaponized a critical React flaw (CVE-2025-55182). Theyre already scanning the web for unpatched apps. Update to React 19.0.1+ now. π Read" [X Link](https://x.com/TheHackersNews/status/1996945488776724875) 2025-12-05T14:11Z 936.7K followers, 14.6K engagements "β Linux malware just leveled up. Fortinet found XXX BPFDoor and X Symbiote samples using a Linux feature called eBPF to sneak past security tools. They now use IPv6 and random ports so firewalls cant easily see them. π Read #ThreatsDay" [X Link](https://x.com/TheHackersNews/status/1996968226178453700) 2025-12-05T15:41Z 936.7K followers, 32.9K engagements "π¨ North Korean hackers are exploiting the new React2Shell bug (10.0-severity) to drop EtherRAT malware that hides its commands inside Ethereum smart contracts. It even makes X blockchain nodes vote to pick its server so takedowns fail. π Read now" [X Link](https://x.com/TheHackersNews/status/1998459963207999985) 2025-12-09T18:29Z 936.7K followers, 15.2K engagements "Fortinet Ivanti and SAP Issue Urgent Patches for Authentication and Code Execution Flaws" [X Link](https://thehackernews.com/2025/12/fortinet-ivanti-and-sap-issue-urgent.html) 2025-12-10T04:52Z 228.6M followers, 6577 engagements "β Fortinet Ivanti & SAP just fixed critical bugs that let attackers break in or run code remotely. β Fortinet: auth bypass via fake SAML login. β Ivanti: admin takeover through poisoned dashboards. β SAP: code injection in Solution Manager (CVSS 9.9). πPatch Now:" [X Link](https://x.com/TheHackersNews/status/1998616677341086071) 2025-12-10T04:52Z 936.7K followers, 5358 engagements
[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.]
@TheHackersNews The Hacker News
Multiple high-profile hacking incidents and vulnerabilities have been recently reported. North Korean hackers are using fake job interviews to spread malware, while Chinese hackers are targeting governments and defense contractors using various backdoors and exploits. Additionally, critical flaws have been discovered in various software, including Cisco VPN gear, SolarWinds Web Help Desk, and Supermicro BMC, which could allow attackers to gain unauthorized access.
Engagements: XXXXXXX #
- X Week XXXXXXXXX +30%
- X Month XXXXXXXXX +52%
- X Months XXXXXXXXXX +91%
- X Year XXXXXXXXXX +61%
Mentions: XX #
- X Week XXX -XXXX%
- X Month XXX -XXXX%
- X Months XXXXX +15%
- X Year XXXXX +62%
Followers: XXXXXXXXXXX #
- X Week XXXXXXX +0.39%
- X Month XXXXXXX +0.21%
- X Months XXXXXXX +1.60%
- X Year XXXXXXX +1.80%
CreatorRank: XXXXXXX #
Social Influence
Social category influence technology brands XXXXX% stocks #3064 countries XXXXX% finance #6180 social networks XXXX% cryptocurrencies #1246
Social topic influence ai #5557, bug #102, $googl #503, crypto #1178, android #434, china #3898, cloudflare #51, india 2.38%, github #115, hidden XXXX%
Top accounts mentioned or mentioned by @the_satyadvv @king_michael_f @dcicybersecnews @jackgoesvirtual @darkwingfella @780thc @brav0charlie @edwardhorigin @arnavsharma @wagnerfinance @readyornottr @spoogemanghost @namedxbird @adriftfuriously @tompick @nikplayscode @reliaquest @saviour123 @supermatrix669 @drumcryptochris
Top assets mentioned Alphabet Inc Class A (GOOGL) Cloudflare, Inc. (NET) Solana (SOL) Microsoft Corp. (MSFT) Ethereum (ETH) Crowdstrike Holdings Inc (CRWD) Bitcoin (BTC)
Top Social Posts
Top posts by engagements in the last XX hours
"GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11000+ Infections"
X Link 2025-12-04T09:32Z 228.6M followers, 16.1K engagements
"Iran-Linked Hackers Hit Israeli Sectors with New MuddyViper Backdoor in Targeted Attacks"
X Link 2025-12-02T11:01Z 228.6M followers, 32.3K engagements
"Second Sha1-Hulud Wave Affects 25000+ Repositories via npm Preinstall Credential Theft"
X Link 2025-11-24T13:06Z 228.6M followers, 80K engagements
"π₯ New npm attack DETECTED A campaign dubbed Sha1-Hulud: The Second Coming has compromised hundreds of packages and over 25000 GitHub repos. The code runs during install steals cloud logins and if that fails it deletes the users home folder. Read more"
X Link 2025-11-24T13:06Z 936.7K followers, 80K engagements
"π¨ Iranian hackers are attacking Israeli networks with a new tool called MuddyViper. The group MuddyWater used fake emails and VPN bugs to break into systems in tech transport and utilities. MuddyViper can steal passwords browser data and control infected computers while pretending to be the Snake game. Read more"
X Link 2025-12-02T11:01Z 936.7K followers, 32.3K engagements
"β URGENT: A 10.0-severity bug just hit React Server Components and Next.js. It lets anyone run code on your server even without logging in. π Details β Fix: update to patched versions now"
X Link 2025-12-03T18:19Z 936.7K followers, 109.4K engagements
"Over 968000 servers may be vulnerable to React2shell (CVE-2025-55182 / 66478). Wiz: XX% of cloud environments still exposed. Endor Labs: No special setup needed. Default configs are exploitable. Its live its easy to weaponize patch or block now. π Read:"
X Link 2025-12-04T04:38Z 936.7K followers, 7393 engagements
"π¨ Thousands hacked after downloading what looked like official government apps. They were fake versions of real banking apps modified by hackers from GoldFactory to include malware. So far over 11000 phones in Southeast Asia have been infected. π Details"
X Link 2025-12-04T09:32Z 936.7K followers, 16K engagements
"π¨ WARNING: A new attack can trick Perplexitys Comet browser into deleting your Google Drive. Just one normal-looking email with hidden cleanup instructions can make the AI agent erase real files no exploit no warning. π Details here"
X Link 2025-12-05T17:56Z 936.7K followers, 22.8K engagements
"ThreatsDay Bulletin: Wi-Fi Hack npm Worm DeFi Theft Phishing Blasts— and XX More Stories"
X Link 2025-12-03T22:30Z 228.6M followers, 32.9K engagements
"Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation"
X Link 2025-12-06T11:46Z 228.6M followers, 17.2K engagements
"⚡ Weekly Recap: USB Malware React2Shell WhatsApp Worms AI IDE Bugs & More"
X Link 2025-12-08T14:31Z 228.6M followers, 10.2K engagements
"North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware"
X Link 2025-12-09T18:29Z 228.6M followers, 15.2K engagements
"Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China"
X Link 2025-12-04T17:26Z 228.6M followers, 13.5K engagements
"Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika Requires Urgent Patch"
X Link 2025-12-05T16:26Z 228.6M followers, 27.6K engagements
"π¨ UPDATE: The RCE flaw in React Server Components now has a name React2shell (CVE-2025-55182). Experts warn its a master key exploit attackers can run any code just by sending a crafted HTTP request. No login needed. π Read:"
X Link 2025-12-04T04:36Z 936.7K followers, 17.1K engagements
"π Cloudflare faced a short outage today after pushing a fix for the new React2Shell (CVE-2025-55182) flaw. The update caused XXX errors across sites. Cloudflare says it wasnt an attack just a bad WAF change made to block the React bug. π Read:"
X Link 2025-12-05T16:16Z 936.7K followers, 19.9K engagements
"CISA added the new 10.0-rated React RCE flaw (CVE-2025-55182) to its exploited list. π Exploited within hours by Chinese hackers. π₯ Affects Next.js React Router Vite Waku & more. π° Some attacks dropped crypto-miners & stole AWS creds. π Read:"
X Link 2025-12-06T11:46Z 936.7K followers, 17.2K engagements
"ShinyHunters. Salesloft Drift. Gainsight. Different breaches same playbook: Abused OAuth trust Exploited integrations Targeted non-human identities Still think Salesforce is just another app Attackers dont theyre hitting the entire SaaS supply chain. π Read the white paper"
X Link 2025-12-03T15:01Z 936.7K followers, 41.3K engagements
"π¨ Critical Apache Tika flaw (CVE-2025-66516) just dropped CVSS XXXX. A single fake PDF can trigger an XXE attack letting hackers read server files or run code. π Read Update to v3.2.2 now"
X Link 2025-12-05T16:26Z 936.7K followers, 13.5K engagements
"Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution"
X Link 2025-12-03T18:19Z 228.6M followers, 152K engagements
"Android Malware FvncBot SeedSnatcher and ClayRat Gain Stronger Data Theft Features"
X Link 2025-12-08T11:02Z 228.6M followers, 40K engagements
"Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs"
X Link 2025-11-24T11:11Z 228.6M followers, 26.1K engagements
"Record XXXX Tbps DDoS Attack Linked to AISURU Botnet with up to X Million Infected Hosts"
X Link 2025-12-04T07:05Z 228.6M followers, 103.2K engagements
"Iran-Linked Hackers Hit Israeli Sectors with New MuddyViper Backdoor in Targeted Attacks"
X Link 2025-12-09T20:40Z 228.6M followers, XX engagements
"Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails"
X Link 2025-12-05T17:56Z 228.6M followers, 22.9K engagements
"Google Adds Layered Defenses to Chrome to Block Indirect Prompt Injection Threats"
X Link 2025-12-09T11:29Z 228.6M followers, 10.9K engagements
"ShadyPanda Turns Popular Browser Extensions with XXX Million Installs Into Spyware"
X Link 2025-12-01T17:34Z 228.6M followers, 54.5K engagements
"How to Streamline Zero Trust Using the Shared Signals Framework"
X Link 2025-12-09T13:17Z 228.6M followers, 8309 engagements
"Fortinet FortiWeb Flaw Actively Exploited in the Wild Before Company's Silent Patch"
X Link 2025-11-14T09:01Z 228.6M followers, 90K engagements
"Self-Spreading 'GlassWorm' Infects VS Code Extensions in Widespread Supply Chain Attack"
X Link 2025-10-24T09:17Z 228.6M followers, 45.9K engagements
"CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems"
X Link 2025-12-05T08:15Z 228.6M followers, 22.6K engagements
"π¨ New Android malware Albiriox is being sold as a service. It can remotely control phones stream screens from banking apps and fake updates to steal logins. It even bypasses Androids screen protections. Read about it here Spread via fake Google Play links its already targeting users in Austria"
X Link 2025-12-01T08:54Z 936.7K followers, 21K engagements
"πΌ ShadyPanda quietly turned trusted Chrome and Edge extensions into spyware. Over XXX million installs in X years some were even once verified by Google. After silent updates in mid-2024 they began sending users browsing data and cookies to remote servers. π Read here"
X Link 2025-12-01T17:34Z 936.7K followers, 30K engagements
"πͺ North Korean hackers got caught live by fake laptops. Researchers from BCA LTD NorthScan and ANYRUN set a trap for Lazarus Groups Famous Chollima team. The hackers thought they were working real remote tech jobs. But the laptops were fake built to watch their actions safely. Read the full story"
X Link 2025-12-02T16:12Z 936.7K followers, 128.1K engagements
"β Brazil under dual attack. Water Saci is spreading a banking trojan through a WhatsApp-based worm while RelayNFC is running an Android NFC relay campaign that steals contactless payment data. Both threats use social engineering and target Brazilian users. π Read details:"
X Link 2025-12-03T15:35Z 936.7K followers, 194.6K engagements
"π¨ Cloudflare just stopped the largest DDoS attack ever a XXXX Tbps strike from the AISURU botnet that used up to X million hacked devices. It hit 15000 ports every second for XX seconds before being blocked. π Details:"
X Link 2025-12-04T07:05Z 936.7K followers, 103.2K engagements
"π¨ CISA just warned about a new Chinese state-backed hack tool called BRICKSTORM a backdoor found in VMware and Windows systems used by U.S. government and tech networks. It can reinstall itself if removed hide in normal traffic and give hackers full remote control. πRead"
X Link 2025-12-05T08:15Z 936.7K followers, 22.5K engagements
"β Hackers are exploiting a bug in the Sneeit Framework plugin (CVE-2025-6389) to run code on servers and create admin accounts on WordPress sites. β Separately a flaw in ICTBroadcast (CVE-2025-2611) lets attackers use the BROADCAST cookie for unauthenticated remote shell access on exposed hosts. π Read"
X Link 2025-12-08T09:17Z 936.7K followers, 20.1K engagements
"β Three new Android threats just dropped: FvncBot fake mBank app that logs keys streams screens and steals banking data. SeedSnatcher spreads via Telegram to steal crypto seed phrases and 2FA codes. ClayRat upgraded spyware faking YouTube & taxi apps for full device control. All abuse Androids accessibility features. π Read here"
X Link 2025-12-08T11:02Z 936.7K followers, 39.9K engagements
"Catch the the latest #CybersecurityRecap for: π₯ USB drives spreading crypto miners. π° Fake investment sites busted. π CastleRAT creeping through networks. β Portugal shields ethical hackers. πΈ Ransomware payouts falling fast. π Get the full stories latest tools and expert webinars in the latest recap:"
X Link 2025-12-08T14:49Z 936.7K followers, 10.1K engagements
"π₯ You can win $20K for breaking Googles new Chrome security feature. Google just added the User Alignment Critic a safeguard that uses a second model to double-check Chromes AI agent and block prompt attacks or data leaks. π Read:"
X Link 2025-12-09T11:29Z 936.7K followers, 10.9K engagements
"π‘ Most Zero Trust tools still dont talk to each other so access decisions lag behind real risks. A MongoDB engineer built a workflow using Tines that lets Kolide send real-time device alerts to Okta through the Shared Signals Framework. Finally Zero Trust that actually works in sync. π Read:"
X Link 2025-12-09T13:17Z 936.7K followers, 8309 engagements
"Google to Verify All Android Developers in X Countries to Block Malicious Apps"
X Link 2025-08-26T06:29Z 228.6M followers, 7M engagements
"Malicious Rust Crate Delivers OS-Specific Malware to Web3 Developer Systems"
X Link 2025-12-06T01:26Z 228.6M followers, XX engagements
"North Korean Hackers Deploy XXX npm Packages to Spread Updated OtterCookie Malware"
X Link 2025-11-28T16:19Z 228.6M followers, 21.8K engagements
"The Death of the Security Checkbox: BAS Is the Power Behind Real Defense"
X Link 2025-12-08T17:13Z 228.6M followers, XX engagements
"5 Threats That Reshaped Web Security This Year 2025"
X Link 2025-12-04T12:03Z 228.6M followers, 13K engagements
"Experts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RAT"
X Link 2025-12-08T20:26Z 228.6M followers, XX engagements
"Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks"
X Link 2025-12-07T00:14Z 228.6M followers, XXX engagements
"ShadowPad Malware Actively Exploits WSUS Vulnerability for Full System Access"
X Link 2025-11-24T07:20Z 936.1K followers, 116.6K engagements
"India Orders Phone Makers to Pre-Install Sanchar Saathi App to Tackle Telecom Fraud"
X Link 2025-12-01T17:56Z 228.6M followers, 25.5K engagements
"Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools"
X Link 2025-11-26T11:38Z 228.6M followers, 51.9K engagements
"APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1000+ Domains"
X Link 2025-11-21T10:44Z 935.9K followers, 26.5K engagements
"CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV"
X Link 2025-11-30T09:25Z 228.6M followers, 22.7K engagements
"Webinar: The "Agentic" Trojan Horse: Why the New AI Browsers War is a Nightmare for Security Teams"
X Link 2025-12-01T12:18Z 228.6M followers, 52.8K engagements
"Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets"
X Link 2025-12-01T05:09Z 228.6M followers, 16.1K engagements
"Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan"
X Link 2025-11-27T18:13Z 228.6M followers, 15.5K engagements
"Active Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under Attack"
X Link 2025-10-29T08:12Z 228.6M followers, 12.3K engagements
"India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and Misuse"
X Link 2025-12-02T17:48Z 228.6M followers, 29.4K engagements
"ThreatsDay Bulletin: 0-Days LinkedIn Spies Crypto Crimes IoT Flaws and New Malware Waves"
X Link 2025-11-20T12:45Z 935.6K followers, 82.8K engagements
"Qilin Ransomware Turns South Korean MSP Breach Into 28-Victim 'Korean Leaks' Data Heist"
X Link 2025-11-26T14:33Z 228.6M followers, 24.7K engagements
"π Important: Google is locking down Android. Starting Sept 2026 every app even outside the Play Store must come from a verified developer. No more anonymous sideloads. No quick comebacks for malware gangs. First up: Brazil Indonesia Singapore Thailand. Full story"
X Link 2025-08-26T06:29Z 936.7K followers, 7M engagements
"π¨ CISA confirmed ACTIVE exploitation of new flaws in Dassault Systmes DELMIA Apriso and XWiki. One lets any guest run code. Another gives full admin access. Hackers are already dropping crypto miners. Agencies have until Nov XX to patch"
X Link 2025-10-29T08:12Z 936.5K followers, 11.6K engagements
"π° Crypto mixer founders jailed. Samourai Wallets Keonne Rodriguez and William Hill got X and X years for laundering $237M through Bitcoin tools Whirlpool and Ricochet. Funds came from drugs fraud hacks even murder-for-hire"
X Link 2025-11-22T11:37Z 935.6K followers, 16.5K engagements
"β Hackers love community update tools. Why Because anyone can upload a package. One bad update = hacked systems. π Join our free live webinar with Action1 CTO Gene Moody see how to patch safely without slowing down. Save your spot"
X Link 2025-11-26T11:38Z 936K followers, 51.6K engagements
"π₯ Hackers hit South Koreas banks through one IT vendor spreading Qilin ransomware to XX firms and stealing X TB of data. Evidence suggests Russian and North Korean groups worked together. Full story"
X Link 2025-11-26T14:33Z 935.8K followers, 21.1K engagements
"Hackers posing as Kyrgyzstans Justice Ministry are spreading 2013-era NetSupport RAT across Kyrgyzstan and Uzbekistan using fake PDFs and old Java tricksblocking outsiders to hide the attack. Old tools. New victims"
X Link 2025-11-27T18:13Z 935.7K followers, 13.5K engagements
"π¨ North Korean hackers uploaded XXX malicious npm packages (31K+ downloads). They drop a new OtterCookie variant that steals passwords crypto data and screenshots all from a fake job interview setup. Details here"
X Link 2025-11-28T16:19Z 935.8K followers, 18.7K engagements
"π¨ CISA added a real-world exploited flaw in OpenPLC ScadaBR to its Known Exploited Vulnerabilities list. Hackers used the bug (CVE-2021-26829) to deface a fake water plant system in under XX hours disabling logs and alarms. Read"
X Link 2025-11-30T09:25Z 936.4K followers, 22.2K engagements
"π¨ Tomiris is back and harder to spot. Kaspersky reports the group is using Telegram & Discord as C2 servers to hide attacks on government networks in Russia & Central Asia. Its new malware written in Python Rust Go PowerShell & C#. Full details"
X Link 2025-12-01T05:09Z 935.6K followers, 14.5K engagements
"π¨ The browser just became your riskiest employee. New AI browsers like ChatGPT Atlas can act on your behalf booking buying sending data. One hidden command can turn them against you. Join this expert webinar to learn how to spot and stop these new AI browser threats"
X Link 2025-12-01T12:18Z 936.1K followers, 52.8K engagements
"π’ URGENT: India just made a cybersecurity app mandatory on all new phones. The app Sanchar Saathi cant be deleted or disabled. It helps report fraud trace lost devices and block illegal calls. Full story"
X Link 2025-12-01T17:56Z 935.8K followers, 24.8K engagements
"π± India now requires messaging apps like WhatsApp Telegram and Signal to stay linked to an active SIM card. Web sessions will auto-logout every X hours. Goal stop ghost sessions used for scams and fraud. π Details"
X Link 2025-12-02T17:48Z 936.4K followers, 29.4K engagements
"React2shell doesnt stop at React or Next.js. Any library bundling RSCVite Parcel RedwoodJS Wakuis likely exposed. Cloudflare added WAF protection for proxied apps but self-hosted ones stay at risk"
X Link 2025-12-04T04:37Z 936.4K followers, 7051 engagements
"π€π₯ AI-built code just broke web security in 2025. One bug in a vibe coding platform let anyone access private apps no login needed. β XX% of AI-written code had exploitable flaws. π’ Even big firms like Wix had to patch fast. The fix Treat all AI code as untrusted. π Read here"
X Link 2025-12-04T12:03Z 936.4K followers, 12.9K engagements
"π¨ A fake Microsoft Teams installer is spreading malware in China. Hackers called "Silver Fox" made it look like a Russian attack to hide their tracks. It installs ValleyRAT giving full remote access to victims. π Read:"
X Link 2025-12-04T17:26Z 936.2K followers, 10.2K engagements
"Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera"
X Link 2025-12-02T15:16Z 228.6M followers, 212.6K engagements
"New Albiriox MaaS Malware Targets 400+ Apps for On-Device Fraud and Screen Control"
X Link 2025-12-01T08:54Z 228.6M followers, 21.9K engagements
"GlassWorm Returns with XX Malicious Extensions Impersonating Popular Developer Tools"
X Link 2025-12-02T15:03Z 228.6M followers, 61.2K engagements
"Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks"
X Link 2025-12-08T09:17Z 228.6M followers, 20.2K engagements
"GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs"
X Link 2025-11-10T08:53Z 228.6M followers, 92.6K engagements
"Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild"
X Link 2025-11-19T04:23Z 228.6M followers, 21.1K engagements
"Brazil Hit by Banking Trojan Spread via WhatsApp Worm and RelayNFC NFC Relay Fraud"
X Link 2025-12-03T15:35Z 228.6M followers, 195.4K engagements
"Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability"
X Link 2025-12-05T14:11Z 228.6M followers, 34.7K engagements
"Discover the AI Tools Fueling the Next Cybercrime Wave — Watch the Webinar"
X Link 2025-12-03T16:42Z 228.6M followers, 14.2K engagements
"40 npm Packages Compromised in Supply Chain Attack Using bundle.js to Steal Credentials"
X Link 2025-09-16T05:02Z 228.6M followers, 278.7K engagements
"π¨ GlassWorm is back. XX fake VS Code and Open VSX extensions are stealing developer credentials spreading through popular names like Flutter React and Tailwind. The malware hides its control data on the Solana blockchain and runs Rust implants on both Windows and macOS. π Read"
X Link 2025-12-02T15:03Z 936.7K followers, 15K engagements
"β‘ A 16-year-old with a $XXX allowance can now outsmart your email security. Tools like WormGPT FraudGPT and SpamGPT are automating cybercrime writing perfect CEO emails building fake sites and scaling attacks faster than filters can react. In this live session experts will break down how these tools work and how to stop them after someone clicks. π Secure your seat"
X Link 2025-12-03T16:42Z 936.6K followers, 14.1K engagements
"β Within HOURS of disclosure two China-linked hacking groups weaponized a critical React flaw (CVE-2025-55182). Theyre already scanning the web for unpatched apps. Update to React 19.0.1+ now. π Read"
X Link 2025-12-05T14:11Z 936.7K followers, 14.6K engagements
"β Linux malware just leveled up. Fortinet found XXX BPFDoor and X Symbiote samples using a Linux feature called eBPF to sneak past security tools. They now use IPv6 and random ports so firewalls cant easily see them. π Read #ThreatsDay"
X Link 2025-12-05T15:41Z 936.7K followers, 32.9K engagements
"π¨ North Korean hackers are exploiting the new React2Shell bug (10.0-severity) to drop EtherRAT malware that hides its commands inside Ethereum smart contracts. It even makes X blockchain nodes vote to pick its server so takedowns fail. π Read now"
X Link 2025-12-09T18:29Z 936.7K followers, 15.2K engagements
"Fortinet Ivanti and SAP Issue Urgent Patches for Authentication and Code Execution Flaws"
X Link 2025-12-10T04:52Z 228.6M followers, 6577 engagements
"β Fortinet Ivanti & SAP just fixed critical bugs that let attackers break in or run code remotely. β Fortinet: auth bypass via fake SAML login. β Ivanti: admin takeover through poisoned dashboards. β SAP: code injection in Solution Manager (CVSS 9.9). πPatch Now:"
X Link 2025-12-10T04:52Z 936.7K followers, 5358 engagements