Cybersecurity researchers have disclosed details of an ongoing campaign dubbed KongTuke that used a malicious Google…
Technology
Security Bug in StealC Malware Panel Let Researchers Spy on Threat Actor Operations
Ravie LakshmananJan 19, 2026Malware / Threat Intelligence Cybersecurity researchers have disclosed a cross-site scripting (XSS) vulnerability…
Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red Notice
Ravie LakshmananJan 17, 2026Law Enforcement / Cybercrime Ukrainian and German law enforcement authorities have identified two…
OpenAI to Show Ads in ChatGPT for Logged-In U.S. Adults on Free and Go Plans
Jan 17, 2026Ravie LakshmananArtificial Intelligence / Data Privacy OpenAI on Friday said it would start showing…
GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection
Jan 16, 2026Ravie LakshmananMalvertising / Threat Intelligence The JavaScript (aka JScript) malware loader called GootLoader has…
Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts
Cybersecurity researchers have discovered five new malicious Google Chrome web browser extensions that masquerade as human…
LOTUSLITE Backdoor Targets U.S. Policy Entities Using Venezuela-Themed Spear Phishing
Jan 16, 2026Ravie LakshmananMalware / Cyber Espionage Security experts have disclosed details of a new campaign…
Your Digital Footprint Can Lead Right to Your Front Door
Jan 16, 2026The Hacker NewsPrivacy / Data Protection You lock your doors at night. You avoid…
China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure
Jan 16, 2026Ravie LakshmananZero-Day / Cyber Espionage A threat actor likely aligned with China has been…
Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways
Jan 16, 2026Ravie LakshmananVulnerability / Web Security Cisco on Thursday released security updates for a maximum-severity…