Endigest

About
Privacy
Terms
Contact
RSS

The Hacker News Articles | Endigest

The Hacker News Articles

The Hacker News

31 min read

Security•2026-04-08

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

A new variant of the Chaos botnet malware has been identified targeting misconfigured cloud deployments, with notable capability additions including a SOCKS proxy feature.

The Hacker News

31 min read

Security•2026-04-08

Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices

This article covers Masjesu (XorBot), a DDoS-for-hire botnet targeting IoT devices globally since 2023.

The Hacker News

31 min read

Security•2026-04-08

APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies

APT28 (Forest Blizzard/Pawn Storm) has deployed a previously undocumented malware suite called PRISMEX in a spear-phishing campaign targeting Ukraine and NATO allies, active since at least September 2025.

The Hacker News

61 min read

Security•2026-04-08

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)

This article addresses the fragmentation of modern enterprise Identity and Access Management (IAM) and introduces Identity Visibility and Intelligence Platforms (IVIP) as a solution to reduce the attack surface.

The Hacker News

51 min read

Security•2026-04-08

Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems

Anthropic launched Project Glasswing, using Claude Mythos to find zero-day vulnerabilities across critical systems.

The Hacker News

91 min read

Security•2026-04-08

N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust

North Korean threat actors behind the 'Contagious Interview' campaign have distributed over 1,700 malicious packages across npm, PyPI, Go, Rust, and PHP ecosystems since January 2025.

The Hacker News

71 min read

Security•2026-04-08

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

Iran-affiliated cyber actors are conducting coordinated attacks against internet-exposed operational technology devices in U.S.

The Hacker News

31 min read

Security•2026-04-07

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

This article covers APT28 (Forest Blizzard), a Russia-linked threat actor, conducting a large-scale DNS hijacking campaign by compromising SOHO routers worldwide.

The Hacker News

41 min read

Security•2026-04-07

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

A high-severity Docker Engine vulnerability (CVE-2026-34040, CVSS 8.8) allows attackers to bypass authorization plugins and gain full host access.

The Hacker News

31 min read

Security•2026-04-07

Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign

This article covers an active cryptomining botnet campaign targeting over 1,000 internet-exposed ComfyUI instances via a remote code execution exploit.

The Hacker News

51 min read

Security•2026-04-07

[Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk

This article promotes a webinar addressing the growing identity security gap in enterprise environments as AI agents become more prevalent.

The Hacker News

41 min read

Security•2026-04-07

The Hidden Cost of Recurring Credential Incidents

This article examines the hidden operational costs of recurring credential incidents beyond high-profile data breaches.