The Hacker News

North Korea's APT37 Uses Facebook Social Engineering to Deliver RokRAT Malware

APT37 spreads RokRAT via Facebook and trojanized PDFelement accounts created Nov 10, 2025, enabling espionage and data theft.

Claude Mythos can hack anything, Anthropic says. Should we believe them?

Antrophic says its newest model found vulnerabilities in every major operating system and browser—and wrote exploits for them ...
decrypt

What Is Hermes? The Self-Improving AI Agent Coming for OpenClaw

Add Decrypt as your preferred source to see more of our stories on Google. Hermes Agent saves every workflow it learns as a reusable skill, compounding its capabilities over time—no other agent does ...

Suspect Accused of Hacking Climate Activists Appears in Court

Amit Forlit is accused of running a hacking operation that aimed to thwart climate litigation at the behest of a lobbying ...

Hackers are abusing unpatched Windows security flaws to hack into organizations

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit ...
The Hacker News

UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign

The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted ...

Hacker Used Claude and ChatGPT to Breach Multiple Government Agencies

Solo hacker used AI to breach 9 Mexican government agencies, exposing 195 million citizens' data in hours instead of weeks.
Live Science on MSN

Hackers used Claude and ChatGPT to steal hundreds of millions of Mexican government records

A group of hackers used both Claude Code and ChatGPT in a cybersecurity hack that lasted two and a half months.

Unpatched Microsoft Defender flaw lets hackers gain admin access

A security researcher has published a working exploit for a Microsoft Defender security flaw that affects Windows 10, 11, and ...

Massive Chrome Extension Scam Exposes 20,000 Users to Data Theft

Researchers linked 108 malicious Chrome extensions to a coordinated campaign that exposed about 20,000 users to data theft, ...

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...
Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...