The Hacker News

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked updates, fixed in v8.8.9 ...
Reuters

Chinese-linked hackers target US entities with Venezuelan-themed malware

Mustang Panda uses Venezuela-themed phishing emails for cyberespionage Acronis uncovers malware linked to Mustang Panda operations Malware targets US government, policy-related entities, researchers ...
Bleeping Computer

Grubhub confirms hackers stole data in recent security breach

Exclusive: Food delivery platform Grubhub has confirmed a recent data breach after hackers accessed its systems, with sources telling BleepingComputer the company is now facing extortion demands.
PBS

Hackers disrupt Iranian state TV to broadcast video of exiled crown prince

DUBAI, United Arab Emirates (AP) — Hackers disrupted Iranian state television satellite transmissions to air footage supporting the country's exiled crown prince and calling on security forces to not ...
Ars Technica

Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack

Pairing Bluetooth devices can be a pain, but Google Fast Pair makes it almost seamless. Unfortunately, it may also leave your headphones vulnerable to remote hacking. A team of security researchers ...
Wired

Security News This Week: US Hackers Reportedly Caused a Blackout in Venezuela

Plus: AI reportedly caused ICE to send agents into the field without training, Palantir’s app for targeting immigrants gets exposed, and more. As Immigration and Customs Enforcement continues its ...
GameSpot

Ubisoft Is Sending Out Compensation To Rainbow Six Siege Players Over Hack

GameSpot may get a commission from retail offers. It was anything but a wonderful holiday season for Ubisoft's Rainbow Six Siege players. Following a massive hack that dumped billions of credits into ...
Bleeping Computer

China-linked hackers exploited Sitecore zero-day for initial access

An advanced threat actor tracked as UAT-8837 and believed to be linked to China has been focusing on critical infrastructure systems in North America, gaining access by exploiting both known and ...
UPI

North Korea-linked hackers pose as human rights activists, report says

SEOUL, Jan. 19 (UPI) --North Korea-linked hackers are using emails that impersonate human rights organizations and financial institutions to lure targets into opening malicious files, according to a ...
Engadget

Flaw in 17 Google Fast Pair audio devices could let hackers eavesdrop

Now would be a good time to update all your Bluetooth audio devices. On Thursday, Wired reported on a security flaw in 17 headphone and speaker models that could allow hackers to access your devices, ...
ZDNet

How a simple link allowed hackers to bypass Copilot's security guardrails - and what Microsoft did about it

Dubbed "Reprompt," the attack used a URL parameter to steal user data. A single click was enough to trigger the entire attack chain. Attackers could pull sensitive Copilot data, even after the window ...
PC Magazine

Using Windows 10? Do This Now to Lower Your Risk of Being Hacked

Now that Windows 10 is no longer supported, it's become a more attractive target for hackers. That doesn't mean you need to upgrade right away—here's how to stay protected. When the IBM PC was new, I ...