The Hacker News
الذهاب إلى القناة على Telegram
⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. 📨 Contact: admin@thehackernews.com 🌐 Website: https://thehackernews.com
إظهار المزيد2025 عام في الأرقام
153 559
المشتركون
+4924 ساعات
+3937 أيام
+1 38530 أيام
جاري تحميل البيانات...
القنوات المماثلة
سحابة العلامات
الإشارات الواردة والصادرة
---
---
---
---
---
---
جذب المشتركين
ديسمبر '25
ديسمبر '25
+1 580
في 0 قنوات
نوفمبر '25
+1 640
في 0 قنوات
Get PRO
أكتوبر '25
+1 409
في 0 قنوات
Get PRO
سبتمبر '25
+1 022
في 0 قنوات
Get PRO
أغسطس '25
+1 035
في 0 قنوات
Get PRO
يوليو '25
+1 349
في 0 قنوات
Get PRO
يونيو '25
+2 009
في 0 قنوات
Get PRO
مايو '25
+5 311
في 0 قنوات
Get PRO
أبريل '250
في 0 قنوات
Get PRO
مارس '250
في 0 قنوات
Get PRO
فبراير '250
في 0 قنوات
Get PRO
يناير '25
+1 463
في 1 قنوات
Get PRO
ديسمبر '24
+2 825
في 0 قنوات
Get PRO
نوفمبر '24
+3 404
في 0 قنوات
Get PRO
أكتوبر '24
+3 585
في 0 قنوات
Get PRO
سبتمبر '24
+2 646
في 0 قنوات
Get PRO
أغسطس '24
+1 954
في 0 قنوات
Get PRO
يوليو '24
+1 464
في 0 قنوات
Get PRO
يونيو '24
+1 046
في 0 قنوات
Get PRO
مايو '24
+1 069
في 0 قنوات
Get PRO
أبريل '24
+1 427
في 0 قنوات
Get PRO
مارس '24
+998
في 1 قنوات
Get PRO
فبراير '24
+414
في 0 قنوات
Get PRO
يناير '24
+921
في 0 قنوات
Get PRO
ديسمبر '23
+866
في 0 قنوات
Get PRO
نوفمبر '23
+1 395
في 0 قنوات
Get PRO
أكتوبر '23
+3 518
في 0 قنوات
Get PRO
سبتمبر '23
+3 163
في 0 قنوات
Get PRO
أغسطس '23
+3 392
في 0 قنوات
Get PRO
يوليو '23
+4 604
في 0 قنوات
Get PRO
يونيو '23
+40
في 0 قنوات
Get PRO
مايو '23
+2 413
في 0 قنوات
Get PRO
أبريل '23
+2 841
في 0 قنوات
Get PRO
مارس '23
+1 817
في 0 قنوات
Get PRO
فبراير '23
+10 998
في 0 قنوات
Get PRO
يناير '230
في 0 قنوات
Get PRO
ديسمبر '220
في 0 قنوات
Get PRO
نوفمبر '220
في 0 قنوات
Get PRO
أكتوبر '22
+677
في 0 قنوات
Get PRO
سبتمبر '22
+3 968
في 0 قنوات
Get PRO
أغسطس '22
+2 400
في 0 قنوات
Get PRO
يوليو '22
+2 590
في 0 قنوات
Get PRO
يونيو '22
+2 628
في 0 قنوات
Get PRO
مايو '22
+3 981
في 0 قنوات
Get PRO
أبريل '22
+4 170
في 0 قنوات
Get PRO
مارس '22
+5 400
في 0 قنوات
Get PRO
فبراير '22
+4 542
في 0 قنوات
Get PRO
يناير '22
+63 832
في 0 قنوات
| التاريخ | نمو المشتركين | الإشارات | القنوات | |
| 26 ديسمبر | +78 | |||
| 25 ديسمبر | +64 | |||
| 24 ديسمبر | +45 | |||
| 23 ديسمبر | +52 | |||
| 22 ديسمبر | +66 | |||
| 21 ديسمبر | +72 | |||
| 20 ديسمبر | +49 | |||
| 19 ديسمبر | +113 | |||
| 18 ديسمبر | +48 | |||
| 17 ديسمبر | +51 | |||
| 16 ديسمبر | +66 | |||
| 15 ديسمبر | +54 | |||
| 14 ديسمبر | +58 | |||
| 13 ديسمبر | +73 | |||
| 12 ديسمبر | +50 | |||
| 11 ديسمبر | +58 | |||
| 10 ديسمبر | +46 | |||
| 09 ديسمبر | +47 | |||
| 08 ديسمبر | +77 | |||
| 07 ديسمبر | +47 | |||
| 06 ديسمبر | +39 | |||
| 05 ديسمبر | +66 | |||
| 04 ديسمبر | +107 | |||
| 03 ديسمبر | +77 | |||
| 02 ديسمبر | +40 | |||
| 01 ديسمبر | +37 |
منشورات القناة
🛑 Trust Wallet confirmed a security breach in its Chrome extension.
Malicious code was inserted into version 2.68, stealing wallet recovery phrases and draining about $7 million.
Users must update to v2.69.
🔗 Read details here → https://thehackernews.com/2025/12/trust-wallet-chrome-extension-bug.html
2 805350
| 2 | 🛑 Trust Wallet says a bug in its Chrome extension led to real losses. About $7M was drained after malicious code landed in version 2.68, targeting wallet recovery phrases.
Hundreds of users were affected.
🔗 Read → https://thehackernews.com/2025/12/trust-wallet-chrome-extension-bug.html | 549 |
| 3 |  China-linked Evasive Panda ran a targeted DNS poisoning campaign to silently push spyware through fake software updates, Kaspersky reports.
🔗 Learn how poisoned DNS enabled stealth espionage → https://thehackernews.com/2025/12/china-linked-evasive-panda-ran-dns.html | 3 444 |
| 4 |  ThreatsDayBulletin: Cyber threats are shifting tactics this week.
Stealthy loaders now hide in trusted tools, AI chatbot flaws and Docker prompt injection exploits can leak data, and commodity loaders deliver RATs to industry targets.
Android NFC malware and fake PoCs add to the risk.
🔗 Read → https://thehackernews.com/2025/12/threatsday-bulletin-stealth-loaders-ai.html | 6 550 |
| 5 |  Stolen vault backups from the 2022 LastPass breach are still paying out.
$35 Million+ traced as attackers crack weak master passwords years later, draining crypto through 2025.
TRM Labs links laundering to Russian exchanges and mixers, despite CoinJoin use.
🔗 Read → https://thehackernews.com/2025/12/lastpass-2022-breach-led-to-years-long.html | 6 717 |
| 6 |  Fortinet confirms active exploitation of a FortiOS SSL VPN flaw that bypasses 2FA.
CVE-2020-12812 lets attackers log in by changing the case of a username when LDAP is misconfigured.
The bug can allow admin or VPN access without second-factor checks.
🔗 Read → https://thehackernews.com/2025/12/fortinet-warns-of-active-exploitation.html | 6 992 |
| 7 |  CISA added a Digiever NVR bug to its exploited list after confirmed attacks.
CVE-2023-52163 allows remote code execution through command injection once logged in.
Researchers link it to Mirai and ShadowV2 botnets. The device is end-of-life and unpatched.
🔗 Read → https://thehackernews.com/2025/12/cisa-flags-actively-exploited-digiever.html | 6 521 |
| 8 |  A new MacSync malware variant hit macOS via a signed and notarized app, letting it bypass Apple Gatekeeper.
The fake messaging installer ran like a legitimate app until Apple revoked the certificate.
🔗 Read → https://thehackernews.com/2025/12/new-macsync-macos-stealer-uses-signed.html | 7 216 |
| 9 |  Nomani investment scams rose 62% in 2025, ESET says.
Campaigns now run on YouTube as well as Facebook, pushing fake returns with AI-made videos.
64,000+ scam URLs were blocked this year.
🔗 How the fraud chain works → https://thehackernews.com/2025/12/nomani-investment-scam-surges-62-using.html | 7 352 |
| 10 |  Cybercrime shifted in 2025. 70.5% of data breaches hit SMBs, not large enterprises.
Attackers moved to smaller firms after big companies hardened defenses and rejected ransoms. Volume replaced payout size.
🔗 What the data shows from 2025 breaches → https://thehackernews.com/2025/12/attacks-are-evolving-3-ways-to-protect.html | 7 186 |
| 11 | U.S. SEC has charged multiple companies over a crypto scam that took $14M from retail investors.
The scheme used WhatsApp investment clubs and fake AI trading signals to push victims onto non-existent crypto platforms.
No real trading ever happened.
🔗 Read → https://thehackernews.com/2025/12/sec-files-charges-over-14-million.html | 7 229 |
| 12 |  Italy fined Apple €98.6m over how App Tracking Transparency works in the App Store.
Regulators say third-party apps must show double consent prompts, while Apple’s own apps get one-tap approval.
🔗 Read → https://thehackernews.com/2025/12/italy-fines-apple-986-million-over-att.html | 7 520 |
| 13 |  🛑 Two Chrome extensions were caught intercepting browser traffic and stealing credentials from 170+ sites.
They pose as VPN tools, charge subscriptions, then silently proxy traffic and exfiltrate credentials in plaintext.
One has been active since 2017, the other since 2023.
🔗 Details → https://thehackernews.com/2025/12/two-chrome-extensions-caught-secretly.html | 8 492 |
| 14 |  Watch how Passwd handles shared passwords, API keys, and system access for Google Workspace teams.
Centralized admin control with audit trails replaces informal sharing without introducing a new login layer or tool sprawl.
🔗 Learn more → https://thehackernews.com/2025/12/passwd-walkthrough-of-google-workspace.html | 7 853 |
| 15 |  What happens when your security vendor is too distracted by a merger to help you fix a vulnerability?
New insights from JFrog explore the risks of vendor instability in a consolidating market.
Don't let your AppSec stack become a liability. Read the analysis: https://thn.news/sec-vendor-risks-x | 7 743 |
| 16 |  INTERPOL led a cybercrime sweep across Africa. 574 arrests and $3M recovered after targeting BEC, extortion, and ransomware in 19 countries.
Separately, a Ukrainian Nefilim ransomware affiliate pleaded guilty in the U.S.
🔗 Details from both cases → https://thehackernews.com/2025/12/interpol-arrests-574-in-africa.html | 9 677 |
| 17 |  Purdue University tested deepfake detectors where they actually break: real, compressed social media video.
Not clean demos. Not lab data.
The benchmark shows why false-acceptance rate matters more than accuracy when camera feeds drive access and trust.
🔗 What the benchmark reveals → https://thehackernews.com/expert-insights/2025/12/purdue-universitys-real-world-deepfake.html | 7 304 |
| 18 |  💪 The U.S. Justice Department seized fraud infrastructure used to steal bank logins at scale.
Criminals ran fake bank ads on Google and Bing, captured credentials, and drained real accounts.
$14.6M in confirmed losses so far.
🔗 Read details here → https://thehackernews.com/2025/12/us-doj-seizes-fraud-domain-behind-146.html | 7 325 |
| 19 |  ⚠️ ALERT — A critical RCE flaw (CVSS 9.9) was found in the n8n workflow automation platform.
CVE-2025-68613 lets authenticated users execute arbitrary code, enabling full instance takeover, data access, and system-level actions.
More than 103k exposed instances are observed globally.
🔗 Details → https://thehackernews.com/2025/12/critical-n8n-flaw-cvss-99-enables.html | 7 803 |
| 20 |  FCC added foreign-made drones and critical components to its Covered List, blocking new U.S. approvals and imports under a national-security finding.
New DJI, Autel and other foreign models won’t enter the market unless DoD or DHS approves.
🔗 Read → https://thehackernews.com/2025/12/fcc-bans-foreign-made-drones-and-key.html | 7 238 |
