North Korea-linked hackers have upgraded the InvisibleFerret malware to bypass script-based security tools, converting its Python code into compiled modules that are harder for defenders to inspect ...

A token leaks. A bad package slips in. A login trick works. An old tool shows up again. At first, it feels like the usual mess. Then you see the pattern: attackers are not always breaking in. They are ...

Supply chain attacks with a Dune sci-fi saga branding continue to spread across the open-source ecosystem, with a Microsoft ...

May 2026 dropped three critical Linux vulnerabilities on a near-weekly cadence, and the security discourse has mostly treated them as three separate bad days. They’re not. Together they form a ...

米Microsoftは4月28日（現地時間）、「Microsoft Excel」の2026年4月アップデートの内容を発表した。OpenAIの「GPT‑5.5」やAnthropicの「Claude Opus ...

Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, has been under constant development for years and continues to evolve in support of espionage-focused ...

Learn how a single JavaScript Date() timezone mistake silently corrupts web apps and how to fix timestamp bugs in JS, Python, ...

Google says attackers are using AI for zero-day research, malware development, reconnaissance, and access to premium AI tools ...

A high-severity Linux kernel vulnerability known as 'Copy Fail' (CVE-2026-31431) is under active exploitation, leading CISA ...

The discoverers have named the root vulnerability "Copy Fail". All major distributions since 2017 are affected.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...