The Hacker News

@TheHackersNews

The #1 trusted source for cybersecurity news, insights, and analysis — built for defenders and trusted by decision-makers.

The Internet

Joined October 2010

2KFollowing

926KFollowers

Pinned

The Hacker News@TheHackersNews · 30 m

If you're in cybersecurity, you've probably heard of CISSP All-in-One, The IDA Pro Book, or Gray Hat Hacking. Now imagine learning directly from someone who co-authored the 4th and 5th edition of Gray Hat Hacking and has worked in global threat teams like Symantec, Mandiant, and…

3.0K

The Hacker News@TheHackersNews · 57 m

🚨 Attackers are impersonating you—with AI. From deepfakes to fake LinkedIn accounts, social engineering is now real-time and relentless. Join cybersecurity leader Michael Coates and @DoppelHQ CEO Kevin Tian to learn how AI can fight back → thehacker.news/defeating-digi…

TheHackersNews's tweet image. 🚨 Attackers are impersonating you—with AI.

From deepfakes to fake LinkedIn accounts, social engineering is now real-time and relentless.

Join cybersecurity leader Michael Coates and @DoppelHQ CEO Kevin Tian to learn how AI can fight back → thehacker.news/defeating-digi…

4.0K

The Hacker News@TheHackersNews · 3 h

🚨 Shadow AI is exploding inside your org—whether you see it or not. Zscaler tracked 36x more AI traffic in 2024, with 800+ apps in use. Blocking isn’t working—employees are going around it. The real risk? Your IP is training public models. Here’s what to do instead ↓…

TheHackersNews's tweet image. 🚨 Shadow AI is exploding inside your org—whether you see it or not.

Zscaler tracked 36x more AI traffic in 2024, with 800+ apps in use. Blocking isn’t working—employees are going around it.

The real risk? Your IP is training public models.

Here’s what to do instead ↓…

10.0K

The Hacker News@TheHackersNews · 9 h

🔄 UPDATE | Microsoft has expanded patches for the actively exploited SharePoint RCE flaw (CVE-2025-53770). 🔐 Now also covered: • SharePoint Enterprise Server 2016 • SharePoint Enterprise Server 2016 Language Pack 🛡️ Full guidance → thehackernews.com/2025/07/micros…

TheHackersNews's tweet card. Microsoft warns of active SharePoint exploits affecting on-prem users; 54 victims confirmed in major attack.

102

13.0K

The Hacker News@TheHackersNews · 20 h

🚨 China-linked APT41 breached African gov IT networks using internal SharePoint servers as C2. The attack used stolen admin creds, DLL sideloading, and fake GitHub domains—marking rare APT41 activity in Africa. Full details → thehackernews.com/2025/07/china-…

TheHackersNews's tweet card. APT41 targeted African IT services using SharePoint-based C2, custom malware, and credential stealers.

11.0K

The Hacker News@TheHackersNews · 20 h

🚨 New Android spyware linked to Iran’s MOIS is posing as Starlink and VPN apps. DCHSpy hijacks WhatsApp, mic, camera, files, and location—likely targeting dissidents post-Israel-Iran conflict. Still spreading via Telegram. Full report → thehackernews.com/2025/07/iran-l…

TheHackersNews's tweet card. DCHSpy Android spyware, linked to Iran's MOIS, mimics VPN and Starlink apps to spy on dissidents.

10.0K

The Hacker News Retweeted

The Hacker News@TheHackersNews · Jul 21

🔥 ALERT ➟ Microsoft issues urgent security patches for critical SharePoint RCE flaw (CVE-2025-53770), now under active exploitation worldwide. Hackers are bypassing MFA, stealing keys, and targeting banks, government agencies, hospitals & more. Details →…

157

357

108.0K

The Hacker News@TheHackersNews · 23 h

60% of breaches in 2025 involved one common risk: humans handling passwords. We may dream of a passwordless future, but today’s real fix is removing users from the login flow. Here’s how teams are doing it—without waiting for full passkey adoption ↓ thehackernews.com/expert-insight…

TheHackersNews's tweet card. Most breaches in 2025 stemmed from human error. Passwords remain risky—experts push for secure alternatives.

10.0K

The Hacker News@TheHackersNews · Jul 21

⚠️ Zero-days are hitting faster than teams can patch. → SharePoint & Chrome under active attack → Hackers exploit NVIDIA, SQLite, CrushFTP → $2.17B stolen in crypto so far this year → AI just stopped a real-world exploit before humans did This week proves: No system is…

TheHackersNews's tweet image. ⚠️ Zero-days are hitting faster than teams can patch.

→ SharePoint &amp; Chrome under active attack
→ Hackers exploit NVIDIA, SQLite, CrushFTP
→ $2.17B stolen in crypto so far this year
→ AI just stopped a real-world exploit before humans did

This week proves: No system is…

127

14.0K

The Hacker News@TheHackersNews · Jul 21

🚨 Over 80% of orgs are adopting Zero Trust by 2026—but AI is rewriting the playbook. Predictive models block threats. Generative AI speeds triage. Agentic AI enforces policies autonomously. The catch? Human oversight still makes or breaks security. Learn more ↓…

TheHackersNews's tweet image. 🚨 Over 80% of orgs are adopting Zero Trust by 2026—but AI is rewriting the playbook.

Predictive models block threats. Generative AI speeds triage. Agentic AI enforces policies autonomously.

The catch? Human oversight still makes or breaks security.

Learn more ↓…

10.0K

The Hacker News@TheHackersNews · Jul 21

🚨 Over 3,500 websites hijacked to secretly mine crypto — just by visiting them. The stealthy JavaScript miner hides in plain sight, adjusts intensity based on your device, and runs silently in the background. It's linked to credit card theft too. Read ↓…

TheHackersNews's tweet image. 🚨 Over 3,500 websites hijacked to secretly mine crypto — just by visiting them.

The stealthy JavaScript miner hides in plain sight, adjusts intensity based on your device, and runs silently in the background.

It's linked to credit card theft too.

Read ↓…

102

14.0K