TGTGInsighttelegram intelligenceLIVE / telegram public index
Back to channels
The Hacker News avatar

TGINSIGHT CHAT

The Hacker News

@thehackernews

Technologies

⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. 📨 Contact: [email protected] 🌐 Website: https://thehackernews.com

Subscribers16.3万Current channel subscribers
Tracked posts1,016Indexed post count
Recent reach117,410Sum of recent post views
Recent posts

Recent posts

Page 66 of 85 · 1,016 posts

Posted Jan 8

🚨 Three npm pkgs posing as bitcoinjs tools found spreading NodeCordRAT. Postinstall scripts chained a 2nd pkg to drop the payload, steal Chrome creds, API tokens, and crypto wallet seed phrases, and run commands via Discord C2 on Win/Linux/macOS. 🔗 Details → https://thehackernews.com/2026/01/researchers-uncover-nodecordrat-hidden.html

8,940 views

Posted Jan 8

Researchers disclosed multiple critical flaws in Coolify that let authenticated users run commands as root, enabling full server compromise. The issues span 11 CVEs rated up to 10.0 and impact 52,890 internet-exposed hosts. 🔗 Details here → https://thehackernews.com/2026/01/coolify-discloses-11-critical-flaws.html

8,910 views

Posted Jan 8

Large enterprises now run 45 security tools on average, yet 52% of executives say complexity blocks effective security. Vendor consolidation cut costs, not operational results. That gap is driving a rethink of what a security “platform” should actually deliver. 🔗 Read → https://thehackernews.com/expert-insights/2026/01/the-security-platform-is-dead-long-live.html

9,130 views

Posted Jan 8

Ransomware has moved past simple extortion. Stolen data is now auctioned when ransoms fail, turning breaches into repeat revenue. Data auctions expand profits, attract more actors, and scale attacks faster. 🔗 Read → https://thehackernews.com/2026/01/weekly-recap-iot-exploits-wallet.html#:~:text=Ransomware%20Turns%20Breaches%20into%20Bidding%20Wars

8,840 views

Posted Jan 8

CISA added two flaws to its KEV list, citing evidence of exploitation. 🧩 PowerPoint RCE (CVSS 8.8) — memory corruption enables remote code execution 🚨 HPE OneView RCE (CVSS 10.0) — unauthenticated, affects all versions before 11.00 🔗 Read → https://thehackernews.com/2026/01/cisa-flags-microsoft-office-and-hpe.html 🗓️ Federal agencies must patch by Jan 28, 2026.

9,470 views

Posted Jan 8

🏥 OpenAI launched ChatGPT Health, a sandboxed space for health chats. Users can link medical records and wellness apps. Data uses purpose-built 🔒 encryption, stays siloed, isn’t used to train models, and doesn’t affect other chats. 🔗 Details here → https://thehackernews.com/2026/01/openai-launches-chatgpt-health-with.html

10,300 views

Posted Jan 7

Black Cat is running an SEO poisoning campaign that ranks fake software sites in search results. The group impersonates tools like Notepad++, tricking users into installing trojanized installers that drop a backdoor stealing browser data, keystrokes, clipboard contents, and enabling remote access. 🔗 Read → https://thehackernews.com/2026/01/black-cat-behind-seo-poisoning-malware.html

11,600 views

Posted Jan 7

🚨 Another CVSS 10.0 n8n vulnerability disclosed. Researchers found another critical flaw (CVE-2026-21858) in n8n that lets remote attackers take full control with no authentication required. The bug abuses Content-Type handling in form webhooks to read local files, steal secrets, forge admin sessions, and achieve RCE. 🔗 Details here → https://thehackernews.com/2026/01/critical-n8n-vulnerability-cvss-100.html

11,700 views

Posted Jan 7

🔥 WEBINAR ALERT - Most attacks today don’t drop malware. They blend into tools your teams already trust. That’s why alerts stay quiet while real risk moves forward. Fileless and Living-off-the-Land attacks are now standard tradecraft. 🔗 Join our next webinar on how teams are closing this gap. Register here → https://thehackernews.com/2026/01/webinar-learn-how-ai-powered-zero-trust.html

9,780 views

Posted Jan 7

🤖 Non-human accounts now rival humans in security risk. As AI and automation expand, service accounts and bots are gaining deep, unmanaged cloud access. 51% of security teams now rank non-human identity security as a top priority. Don't let machine identities become your biggest blind spot. 🔗 Read more: https://thehackernews.com/2026/01/the-future-of-cybersecurity-includes.html

9,400 views

Posted Jan 7

🚨 Warning - Yet another n8n vulnerability. n8n disclosed a CVSS 10.0 RCE flaw allowing authenticated users to execute untrusted code and fully compromise an instance. CVE-2026-21877 affects cloud and self-hosted deployments running versions ≥0.123.0 and <1.121.3. 🔗 Read → https://thehackernews.com/2026/01/n8n-warns-of-cvss-100-rce-vulnerability.html

9,960 views

Posted Jan 7

⚠️ Veeam fixed a critical Backup & Replication flaw enabling remote code execution as the postgres user. CVE-2025-59470 can be abused by authenticated Backup or Tape Operators via crafted parameters. The update also fixes two additional RCE flaws and a root-level file write issue. 🔗 Read → https://thehackernews.com/2026/01/veeam-patches-critical-rce.html

9,380 views
12•••5•••10•••15•••20•••25•••30•••35•••40•••45•••50•••55•••60•••6465666768•••70•••75•••80•••8485