Hacker news – NuclearCoffee

Hacker news

Experts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RAT

On Dec 08, 2025 8:40 pm, by NuclearCoffee

Cybersecurity researchers are calling attention to a new campaign dubbed JS#SMUGGLER that has been observed leveraging compromised websites as a distribution vector for a remote access trojan named… Continue reading

Hacker news

How Can Retailers Cyber-Prepare for the Most Vulnerable Time of the Year?

On Dec 08, 2025 4:38 pm, by NuclearCoffee

Dec 08, 2025The Hacker NewsCybersecurity / Password Security The holiday season compresses risk into a short, high-stakes window. Systems run hot, teams run lean, and attackers time automated… Continue reading

Hacker news

USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

On Dec 08, 2025 2:37 pm, by NuclearCoffee

Dec 08, 2025Ravie LakshmananHacking News / Cybersecurity It’s been a week of chaos in code and calm in headlines. A bug that broke the internet’s favorite framework, hackers… Continue reading

Hacker news

Android Malware FvncBot, SeedSnatcher, and ClayRat Gain Stronger Data Theft Features

On Dec 08, 2025 12:36 pm, by NuclearCoffee

Cybersecurity researchers have disclosed details of two new Android malware families dubbed FvncBot and SeedSnatcher, as another upgraded version of ClayRat has been spotted in the wild. The… Continue reading

Hacker news

Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks

On Dec 08, 2025 10:33 am, by NuclearCoffee

A critical security flaw in the Sneeit Framework plugin for WordPress is being actively exploited in the wild, per data from Wordfence. The remote code execution vulnerability in… Continue reading

Hacker news

MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan Campaign

On Dec 08, 2025 8:31 am, by NuclearCoffee

Dec 08, 2025Ravie LakshmananNetwork Security / Vulnerability The Iranian hacking group known as MuddyWater has been observed leveraging a new backdoor dubbed UDPGangster that uses the User Datagram… Continue reading

Hacker news

Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

On Dec 06, 2025 5:50 pm, by NuclearCoffee

Dec 06, 2025Ravie LakshmananAI Security / Vulnerability Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives… Continue reading

Hacker news

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

On Dec 06, 2025 11:44 am, by NuclearCoffee

Dec 06, 2025Ravie LakshmananVulnerability / Patch Management The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting React Server Components (RSC)… Continue reading

Hacker news

An Anti-Sales Guide for MSPs

On Dec 05, 2025 9:30 pm, by NuclearCoffee

Most MSPs and MSSPs know how to deliver effective security. The challenge is helping prospects understand why it matters in business terms. Too often, sales conversations stall because… Continue reading

Hacker news

Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails

On Dec 05, 2025 7:28 pm, by NuclearCoffee

Dec 05, 2025Ravie LakshmananEmail Security / Threat Research A new agentic browser attack targeting Perplexity’s Comet browser that’s capable of turning a seemingly innocuous email into a destructive… Continue reading

Category: Hacker news

Stay Connected