Breaking News – Cyber Threats (last 6h)
Generated: 2026-02-03 02:00 PST
- APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks
The Hacker News • 2026-02-03 01:12 • thehackernews.com
The Russia-linked state-sponsored threat actor known as APT28 (aka UAC-0001) has been attributed to attacks exploiting a newly disclosed security flaw in Microsoft Office as part of a campaign codenamed Operation Neusploit.
Zscaler ThreatLabz said it observed the hacking group weaponizing the shortcoming on January 29, 2026, in attacks targeting users in Ukraine, Slovakia, and Romania, three
https://thehackernews.com/2026/02/apt28-uses-microsoft-office-cve-2026.html - The Notepad++ supply chain attack — unnoticed execution chains and new IoCs
Securelist • 2026-02-03 00:10 • securelist.com
Kaspersky GReAT experts discovered previously undocumented infection chains used in the Notepad++ supply chain attacks. The article provides new IoCs related to those incidents which employ DLL sideloading and Cobalt Strike Beacon delivery.
https://securelist.com/notepad-supply-chain-attack/118708/ - 170: Phrack
Darknet Diaries • 2026-02-03 00:00 • darknetdiaries.comPhrack is legendary. It is the oldest, and arguably the most prestigious, underground hacking magazine in the world.
It started in 1985 and is still running today. In this episode we interview the Phrack staff to hear some stories about what it’s like running a hacker magazine for 40 years.
Sponsors
Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure …
https://darknetdiaries.com/episode/170/ - Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox
The Hacker News • 2026-02-02 21:39 • thehackernews.com
Mozilla on Monday announced a new controls section in its Firefox desktop browser settings that allows users to completely turn off generative artificial intelligence (GenAI) features.
“It provides a single place to block current and future generative AI features in Firefox,” Ajit Varma, head of Firefox, said. “You can also review and manage individual AI features if you choose to use them. This
https://thehackernews.com/2026/02/mozilla-adds-one-click-option-to.html - Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group
The Hacker News • 2026-02-02 20:55 • thehackernews.com
A China-linked threat actor known as Lotus Blossom has been attributed with medium confidence to the recently discovered compromise of the infrastructure hosting Notepad++.
The attack enabled the state-sponsored hacking group to deliver a previously undocumented backdoor codenamed Chrysalis to users of the open-source editor, according to new findings from Rapid7.
The development comes shortly
https://thehackernews.com/2026/02/notepad-hosting-breach-attributed-to.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
