The Hacker News

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

GhostPoster malware hid inside 17 Firefox add-ons, abusing logo files to hijack links, inject tracking code, and run ad fraud ...
The Hacker News

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

Amazon reports a new AWS crypto mining campaign abusing IAM credentials, ECS, EC2, and termination protection for persistence ...
The Hacker News

Why Data Security and Privacy Need to Start in Code

Proactive Sensitive Data Leak Detection. Embed privacy across all stages in development, from IDE environments, with ...
The Hacker News

Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure

Amazon reports a GRU-linked APT44 campaign from 2021–2025 targeting energy and critical infrastructure using misconfigured ...
The Hacker News

Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass

Attackers are exploiting two CVSS 9.8 FortiGate SSO authentication bypass flaws days after disclosure; Fortinet urges ...
The Hacker News

Rogue NuGet Package Poses as Tracer.Fody, Steals Cryptocurrency Wallet Data

A fake NuGet package mimicking Tracer.Fody stayed online for years, stealing Stratis wallet files and passwords from Windows ...