Lightnews — Scholar-powered news

LightNews

Hackread.com

@hackread.bsky.social

1.6K followers 14 following 800 posts

The official Bluesky account of the most reliable cybersecurity news platform brings exclusive dark web, tech, hacking news, and much more. Contact: [email protected].

Posts Media Videos Starter Packs

Pinned

Hackread.com @hackread.bsky.social · Dec 2

Thank you. 🙏🏽

YourAnonRiots 🐈️🏴🇵🇸🇲🇲🦋 @youranonriots.bsky.social · Nov 30

The official #Bluesky account of the most reliable cybersecurity news platform brings exclusive dark web, tech, hacking news, and much more. Contact: [email protected]. #CyberSecurityNews #Technology #HackingNews #CyberCrime #infosec

#FF
@hackread.bsky.social

Hackread.com @hackread.bsky.social · 1d

🚨 An authentication bypass flaw in the #ServiceFinder bookings plugin allows attackers to assume admin access. Over 13,800 exploit attempts already detected.

Read more: hackread.com/auth-bypass-service-finder-wordpress-plugin-exploit/

#Cybersecurity #Vulnerability #WordPress #Infosec

Auth Bypass Flaw in Service Finder WordPress Plugin Under Active Exploit

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 1d

NEW: Watch out for Stealit infostealer now using #Node.js single executable feature to hide in fake game and VPN installers, targeting #Windows users, stealing credentials and crypto wallets.

Read: hackread.com/stealit-malw...

#Stealit #Malware #Nodejs #Cybersecurity #Gaming #VPN

Stealit Malware Using Node.js to Hide in Fake Game and VPN Installers

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 2d

#SonicWall says hackers breached all firewall backups from its cloud service, exposing encrypted credentials and detailed network data.

Read: hackread.com/sonicwall-ha...

#DataBreach #Cybersecurity #Firewall #CloudSecurity #InfoSec

SonicWall Says Hackers Breached All of Its Firewall Backups

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 2d

NEW: Watch out as new #ClayRat spyware is being distributed in fake Google Photos, YouTube, TikTok and WhatsApp Android apps, stealing SMS, call logs and photos, then spreading via contact SMS links.

Read more: hackread.com/fake-tiktok-...

#Cybersecurity #Spyware #Malware #AndroidSecurity #Russia

Fake TikTok and WhatsApp Apps Infect Android Devices with ClayRat Spyware

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 2d

🚨 #Discord confirms 70,000 government ID photos stolen via third-party vendor breach but dismisses extortion claims.

Read ➡️ hackread.com/discord-hack...

#DataBreach #CyberSecurity #Privacy #Zendesk

Discord Says Hackers Stole 70,000 ID Photos, Dismisses Extortion Claims

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 2d

🚨 Your “shipment notification” email might be a malware dropper as hackers are hiding malicious JavaScript in business-style messages to drop malware onto your system.

➡️ hackread.com/your-shipmen...

#CyberSecurity #Malware #InfoSec #Phishing #JavaScript

Your Shipment Notification Is Now a Malware Dropper

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 2d

🚨 From companies to everyday users, watch out as fake #MicrosoftTeams installers are spreading the Oyster Backdoor (aka Broomstick) through malicious ads and poisoned search results.

Read: hackread.com/fake-teams-i...

#CyberSecurity #Malware #Backdoor #Oyster #Malvertising #SEO

Fake Teams Installers Dropping Oyster Backdoor (aka Broomstick)

Hackers are using fake Microsoft Teams installers found in search engine results and ads to deploy the Oyster backdoor (aka Broomstick backdoor).

Hackread.com @hackread.bsky.social · 3d

👮‍♂️ 💻 ⚠️ UK police arrest two 17-year-olds in the Kido Nursery ransomware case after data on 8,000 children was stolen and used for extortion.

Read: hackread.com/uk-police-ar...

#KidoNursery #Ransomware #CyberCrime #ChildData #CyberSecurity

UK Police Arrest Two Teens Over Kido Nursery Ransomware Attack

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 3d

OpenAI reports that foreign threat groups are exploiting multiple AI tools including #ChatGPT for cyberattacks, scams, and influence ops, and confirms it has disrupted several such networks. 🧠 💻🛡️⚠️

Read: hackread.com/openai-ai-to...

#CyberSecurity #AI #OpenAI #Infosec #CyberCrime #Phishing #Malware

OpenAI Finds Growing Exploitation of AI Tools by Foreign Threat Groups

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 3d

Another day, another infostealer. Meet #ShuyalStealer, malware that steals logins, Discord tokens, and system data from 17 web browsers, even Tor.

Read more: hackread.com/shuyal-steal...

#CyberSecurity #Malware #InfoStealer #Discord

Shuyal Stealer Targets 17 Web Browsers for Login Data and Discord Tokens

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 4d

📢🚨 RediShell, a 13 year old Redis vulnerability, leaves about 60,000 unauthenticated servers open to remote code execution.

Read more: hackread.com/13-year-old-...

#Cybersecurity #InfoSec #RediShell #Redis #Vulnerability #InfoSec

13-Year-Old RediShell Vulnerability Puts 60,000 Redis Servers at Risk

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 4d

🔒 Microsoft confirms Medusa ransomware is actively exploiting a CVSS 10.0 deserialization flaw in Fortra’s GoAnywhere MFT. If your GoAnywhere instance is internet-exposed, patch immediately.

Read: hackread.com/medusa-ranso...

#CyberSecurity #Ransomware #GoAnywhere #Medusa

Medusa Ransomware Exploiting GoAnywhere MFT Flaw, Confirms Microsoft

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 4d

New research and a video demo shows the Mic-E-Mouse attack, a technique that lets computer mice pick up desk vibrations and turn them into plain speech, effectively listening to nearby conversations.

Read more: hackread.com/mic-e-mouse-...

#MicEMouse #CyberSecurity #Privacy #Infosec #Eavesdropping

New Mic-E-Mouse Attack Shows Computer Mice Can Capture Conversations

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 5d

Are you in #UAE? Watch out as fake Signal and ToTok APKs carrying ProSpy and ToSpy spyware are stealing contacts, messages, backups and files of Android users in the country.

Read: hackread.com/spyware-fake...

#CyberSecurity #Android #Privacy #Spyware #Signal #ToTok

Spyware in Fake Signal and ToTok Apps Targets UAE Android Users

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 5d

🐾 A US-based pet insurance firm exposed 158 GB of files containing personal details of its customers and their pets.

Read: hackread.com/rainwalk-pet...

#CyberSecurity #Privacy #DataBreach #PetInsurance

Rainwalk Pet Insurance Exposes 158 GB of US Customer and Pet Data

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 5d

🚨 A vulnerability in Dell UnityVSA (CVE-2025-36604) lets attackers run commands without logging in. Patch to version 5.5.1 immediately if you’re running earlier versions.

Read more: hackread.com/dell-unityvs...

#Cybersecurity #Dell #UnityVSA #Vulnerability #InfoSec

Patch Now: Dell UnityVSA Flaw Allows Command Execution Without Login

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 7d

Discord confirms a data breach through a third-party vendor, exposing user IDs, emails, and even government IDs. Meanwhile, hackers on #Telegram claim responsibility.

Read: hackread.com/discord-data...

#Discord #DataBreach #CyberSecurity #Privacy #InfoSecurity #Hacking

Discord Data Breach: Hackers Access IDs, Billing Details and Support Chats

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 7d

Using free VPN apps? Well, a new study warns several free iOS and Android VPN apps leak data and use outdated software, putting overall device security at risk.

Read more: hackread.com/studyfree-io...

#VPN #DataLeak #Privacy #CyberSecurity #iOS #Android

New Study Warns Several Free iOS and Android VPN Apps Leak Data

New Study Warns Several Free iOS and Android VPN Apps Leak Data

Hackread.com @hackread.bsky.social · 8d

NEW: Scattered LAPSUS$ Hunters have launched a leak site claiming a massive #Salesforce breach and stolen 1 Billion records from 39 high-profile companies around the world.

Full details: hackread.com/scattered-la...

#DataBreach #CyberSecurity #LAPSUS #ShinyHunters #ScatteredSpider

Scattered LAPSUS$ Hunters Claim Salesforce Breach, 1B Records, 39 Firms Listed

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 8d

Report: 180,000 ICS/OT devices globally exposed online, raising serious public safety and infrastructure risks.

Read: hackread.com/180000-ics-o...

#Cybersecurity #ICS #OT #infoSec #Vulnerability #Riskmanagement

Global Exposure of 180,000 ICS/OT Devices Raises Safety Concerns

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 8d

Alert: a group claiming ties to Cl0p is sending extortion emails to Oracle E-Business Suite users. Mandiant and Google’s threat teams are investigating.

Read: hackread.com/cl0p-extort-...

#OracleEBS #Cybersecurity #Ransomware #Cl0p #Mandiant #Google

Cl0p-Linked Gang Attempts to Extort Oracle E-Business Customers

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 9d

NEW: Renault UK is emailing customers about a third-party data breach where hackers accessed their personal details and vehicle information.

Read: hackread.com/renault-uk-c...

#DataBreach #Renault #CyberSecurity #CyberAttack #Privacy

Renault UK Customer Records Stolen in Third-Party Breach

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 9d

🚨 Researchers find four zero-day vulnerabilities in the $20 #YoLink IoT gateway, exposing smart locks and home access to remote attackers 🔓🔌

Read: hackread.com/20-yolink-io...

#IoTsecurity #SmartHome #Cybersecurity #Vulnerability #HomeSafety

$20 YoLink IoT Gateway Vulnerabilities Put Home Security at Risk

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 9d

🚨 Researchers uncover “Gemini Trifecta” - three critical AI flaws in Google’s Gemini allowing data exfiltration via prompt injection.

Read: hackread.com/google-gemin...

#CyberSecurity #Google #GeminiTrifecta #Vulnerability #GeminiAI

Google Patches “Gemini Trifecta” Vulnerabilities in Gemini AI Suite

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread.com @hackread.bsky.social · 9d

Watch out as hackers are hiding malware inside ZIP archives disguised as documents in a series of new attacks. The trick? #WindowsShortcut files abusing built-in tools.

Read: hackread.com/malicious-zi...

#CyberSecurity #Malware #Phishing #Windows #InfoSec

Malicious ZIP Files Use Windows Shortcuts to Drop Malware

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread