The Hacker News

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

APT28 exploited a Microsoft Office flaw to deliver MiniDoor and Covenant Grunt malware in targeted attacks across Ukraine and Eastern Europe.
Regtechtimes on MSN

Security researchers uncover APT28 campaign exploiting newly disclosed Microsoft Office flaw

Cybersecurity investigators have identified a new cyberattack campaign connected to the Russia-linked hacking group APT28, ...
The Hacker News

When Your Browser Becomes The Attacker: AI Browser Exploits

AI browsers can be hijacked through prompt injection, turning assistants into insider threats. Learn how these exploits work ...
Infosecurity Magazine

Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks

Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says ...

Notepad++ says it was hijacked by Chinese state-sponsored hackers

Last year, the creator of Notepad++ rolled out an update for the text and source code editor after security experts reported ...

Popular open-source coding application targeted in Chinese-linked supply-chain attack

By AJ Vicens Feb 2 (Reuters) - A Chinese-linked cyberespionage group with a long history hijacked the update process for the ...

Notepad++ says Chinese government hackers hijacked its software updates for months

The developer of the popular text editor Notepad++ said hackers associated with the Chinese government hijacked its software ...
Dark Reading

Chinese Hackers Hijack Notepad++ Updates for 6 Months

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

Hugging Face Repositories Abused in New Android Malware Campaign

Attackers exploited Hugging Face’s trusted infrastructure to spread an Android RAT, using fake security apps and thousands of ...

Notepad++ updates got hijacked for months and could have spied for China

The developer did not specify when they became aware of the attack, but said that “all attacker access was definitively terminated” by December 2nd. The Notepad++ updater has been updated itself with ...

‘Best presentation I’ve ever seen’: Peter V’landys backs Nine journo Michael Chammas to build PNG Chiefs

ARL Commission chairman Peter V’landys has moved to allay fears Channel 9 reporter Michael Chammas will be out of his depth as the PNG Chiefs’ incoming general manager of football, revealing a ...