North Korean hacking group APT37 was seen deploying new implants, backdoors, and other tools in attacks targeting air-gapped ...

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign ...

A low-skilled threat actor was able to do a lot with the help of AI, Amazon researchers warn.

Windows 11 Canary Build 28020.1673 (KB5077240) adds a built-in taskbar network speed test, expanded File Explorer dark mode, ...

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

A hacker jailbroke Claude to steal 150GB of Mexican government data in a month-long campaign. CrowdStrike's latest threat report shows it's part of a wider pattern — and maps four domains most ...

PowerShell modules allow you to combine multiple scripts to simplify code management. Learn step-by-step instructions for creating and using these modules.

A Russian-speaking threat actor used AI to plan, manage and conduct cyberattacks on organisations with misconfigured firewalls in 55 countries in January and February, according to Amazon researchers.

AttackIQ has released a new attack graph that emulates the behaviors exhibited by BlackByte ransomware, a strain operated ...

Scammers posing as Burke County deputies are calling residents and demanding payment. Hang up and call 828‑438‑5500 to verify.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking ...