Cyber Hawk

The Hacker News

TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

May 08, 2026

Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that's capable of targeting 59 banking, fintech, and cryptocurrency platforms. The activity is bein…

The Hacker News

New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials

May 08, 2026

Cybersecurity researchers have disclosed details of a new Linux backdoor named PamDOORa that's being advertised on the Rehub Russian cybercrime forum for $1,600 by a threat actor called "dar…

The Hacker News

Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions

May 08, 2026

Details have emerged about a new, unpatched local privilege escalation (LPE) vulnerability impacting the Linux kernel. Dubbed Dirty Frag, it has been described as a successor to Copy Fail (CVE-2026-3…

The Hacker News

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

May 07, 2026

Cybersecurity researchers have disclosed details of a new credential theft framework dubbed PCPJack that targets exposed cloud infrastructure and ousts any artifacts linked to TeamPCP from the enviro…

The Hacker News

Day Zero Readiness: The Operational Gaps That Break Incident Response

May 07, 2026

Having an incident response retainer, or even a pre-approved external incident response firm, is not the same as being ready for an incident. A retainer means someone will answer the phone. Operation…

The Hacker News

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

May 07, 2026

Cybersecurity researchers have discovered three packages on the Python Package Index (PyPI) repository that are designed to stealthily deliver a previously unknown malware family called ZiChatBot on …

The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

May 06, 2026

A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exploited by bad actors to break out of the sandbox and execute arbitrary code on susceptible sy…

Bitcoin Mining

TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials

Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

Day Zero Readiness: The Operational Gaps That Break Incident Response

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

Popular Feeds

We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

Featured News

cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

Random Posts

Popular Posts

We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

Bitcoin Mining

Share

Popular Feeds

Featured News

Random Posts

Popular Posts