现已上线!2025 年 Telegram 研究 — 年度关键洞察 
The Hacker News
前往频道在 Telegram
⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. 📨 Contact: admin@thehackernews.com 🌐 Website: https://thehackernews.com
显示更多📈 Telegram 频道 The Hacker News 的分析概览
频道 The Hacker News (@thehackernews) 英语 语言赛道中的 是活跃参与者。目前社区聚集了 161 553 名订阅者,在 技术与应用 类别中位列第 692,并在 美国 地区排名第 108 位。
📊 受众指标与增长动态
自 невідомо 创建以来,项目保持高速增长,吸引了 161 553 名订阅者。
根据 28 六月, 2026 的最新数据,频道保持稳定运转。过去 30 天订阅人数变化为 -408,过去 24 小时变化为 -57,整体触达仍然可观。
- 认证状态: 已认证(Telegram 官方确认)
- 互动率 (ER): 平均受众互动率为 4.63%。内容发布后 24 小时内通常能获得 3.07% 的反应,占订阅者总量。
- 帖子覆盖: 每篇帖子平均可获得 7 486 次浏览,首日通常累积 4 960 次浏览。
- 互动与反馈: 受众积极参与,单帖平均反应数为 15。
- 主题关注点: 内容集中在 attack, credential, cve-2026, github, backdoor 等核心主题上。
📝 描述与内容策略
作者将该频道定位为表达主观观点的平台:
“⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking.
📨 Contact: admin@thehackernews.com
🌐 Website: https://thehackernews.com”
凭借高频更新(最新数据采集于 29 六月, 2026),频道始终保持新鲜度与高覆盖。分析显示受众积极互动,使其成为 技术与应用 类别中的关键影响点。
161 553
订阅者
-5724 小时
-647 天
-40830 天
数据加载中...
吸引订阅者
六月 '26
六月 '26
+931
在15个频道中
五月 '26
+1 175
在24个频道中
Get PRO
四月 '26
+4 326
在25个频道中
Get PRO
三月 '26
+6 849
在24个频道中
Get PRO
二月 '26
+1 583
在27个频道中
Get PRO
一月 '26
+1 516
在22个频道中
Get PRO
十二月 '25
+1 900
在33个频道中
Get PRO
十一月 '25
+1 648
在24个频道中
Get PRO
十月 '25
+1 634
在21个频道中
Get PRO
九月 '25
+1 163
在25个频道中
Get PRO
八月 '25
+1 070
在17个频道中
Get PRO
七月 '25
+1 318
在28个频道中
Get PRO
六月 '25
+2 024
在24个频道中
Get PRO
五月 '25
+1 328
在24个频道中
Get PRO
四月 '25
+1 758
在13个频道中
Get PRO
三月 '25
+1 782
在16个频道中
Get PRO
二月 '25
+2 159
在19个频道中
Get PRO
一月 '25
+2 315
在31个频道中
Get PRO
十二月 '24
+3 006
在22个频道中
Get PRO
十一月 '24
+3 500
在12个频道中
Get PRO
十月 '24
+3 385
在18个频道中
Get PRO
九月 '24
+2 583
在22个频道中
Get PRO
八月 '24
+2 157
在16个频道中
Get PRO
七月 '24
+1 844
在11个频道中
Get PRO
六月 '24
+1 514
在7个频道中
Get PRO
五月 '24
+1 079
在9个频道中
Get PRO
四月 '24
+1 306
在11个频道中
Get PRO
三月 '24
+1 332
在13个频道中
Get PRO
二月 '24
+630
在14个频道中
Get PRO
一月 '24
+1 075
在14个频道中
Get PRO
十二月 '23
+973
在7个频道中
Get PRO
十一月 '23
+1 457
在8个频道中
Get PRO
十月 '23
+3 536
在5个频道中
Get PRO
九月 '23
+3 177
在0个频道中
Get PRO
八月 '23
+3 401
在0个频道中
Get PRO
七月 '23
+2 829
在0个频道中
Get PRO
六月 '23
+2 847
在0个频道中
Get PRO
五月 '23
+2 417
在0个频道中
Get PRO
四月 '23
+2 646
在0个频道中
Get PRO
三月 '23
+2 345
在0个频道中
Get PRO
二月 '23
+2 328
在0个频道中
Get PRO
一月 '23
+2 603
在0个频道中
Get PRO
十二月 '22
+2 541
在0个频道中
Get PRO
十一月 '22
+2 543
在0个频道中
Get PRO
十月 '22
+3 146
在0个频道中
Get PRO
九月 '22
+3 951
在0个频道中
Get PRO
八月 '22
+2 425
在0个频道中
Get PRO
七月 '22
+2 611
在0个频道中
Get PRO
六月 '22
+2 636
在0个频道中
Get PRO
五月 '22
+3 979
在0个频道中
Get PRO
四月 '22
+4 171
在0个频道中
Get PRO
三月 '22
+6 802
在0个频道中
Get PRO
二月 '22
+3 153
在0个频道中
Get PRO
一月 '22
+4 050
在0个频道中
Get PRO
十二月 '21
+4 346
在0个频道中
Get PRO
十一月 '21
+4 152
在0个频道中
Get PRO
十月 '21
+6 200
在0个频道中
Get PRO
九月 '21
+5 226
在0个频道中
Get PRO
八月 '21
+5 134
在0个频道中
Get PRO
七月 '21
+6 261
在0个频道中
Get PRO
六月 '21
+2 427
在0个频道中
Get PRO
五月 '21
+731
在0个频道中
Get PRO
四月 '21
+1 029
在0个频道中
Get PRO
三月 '21
+1 300
在0个频道中
Get PRO
二月 '21
+786
在0个频道中
Get PRO
一月 '21
+1 163
在0个频道中
Get PRO
十二月 '20
+22 087
在0个频道中
| 日期 | 订阅者增长 | 提及 | 频道 | |
| 29 六月 | +7 | |||
| 28 六月 | +14 | |||
| 27 六月 | +19 | |||
| 26 六月 | +39 | |||
| 25 六月 | +48 | |||
| 24 六月 | +30 | |||
| 23 六月 | +38 | |||
| 22 六月 | +28 | |||
| 21 六月 | +15 | |||
| 20 六月 | +23 | |||
| 19 六月 | +33 | |||
| 18 六月 | +68 | |||
| 17 六月 | +47 | |||
| 16 六月 | +43 | |||
| 15 六月 | +36 | |||
| 14 六月 | +71 | |||
| 13 六月 | +23 | |||
| 12 六月 | +64 | |||
| 11 六月 | +19 | |||
| 10 六月 | +43 | |||
| 09 六月 | +44 | |||
| 08 六月 | +20 | |||
| 07 六月 | +16 | |||
| 06 六月 | +27 | |||
| 05 六月 | +30 | |||
| 04 六月 | +31 | |||
| 03 六月 | +28 | |||
| 02 六月 | +13 | |||
| 01 六月 | +14 |
频道帖子
🛑 EvilTokens hides account takeover risk from your SOC.
Static URL analysis misses it as the phishing page appears only after browser-side decryption. Avoid visibility gaps and accelerate response by uncovering the full attack flow in 1 min.
Read ➝ https://thn.news/ghost-analysis-2023
| 2 |  🛑 236,493 scam domains.
Experts say DCloud Uni-App templates are being used to run fake crypto exchanges, #WhatsApp phishing, gambling scams, and wallet drainers.
Read the full story ➝ https://thehackernews.com/2026/06/236000-dcloud-uni-app-sites-used-in.html | 2 121 |
| 3 |  ⚠️ Gamaredon ran 35 phishing campaigns against Ukraine in 2025.
ESET says it used new PowerShell tools, HTML smuggling, and CVE-2025-8088 to plant malware in Startup.
Simple malware. Harder infrastructure.
Read more ↓ https://thehackernews.com/2026/06/gamaredon-expands-ukraine-attacks-with.html | 2 063 |
| 4 | The SOC problem is no longer just detection.
It is the queue.
AI is now taking the first pass on alert triage, enrichment, and routine response so analysts can focus on calls that carry risk.
The 2026 Cybersecurity Stars Awards winners show where SOC automation is headed.
Read the story: https://awards.thehackernews.com/blog/ai-reads-the-alert-queue/ | 2 751 |
| 5 |  🛑 Microsoft removed 119 Edge extensions hiding malware in images and fonts.
Up to 2.6 MILLION installs. They posed as ad blockers, VPNs, translators, and video downloaders.
Some payloads stole credentials and ran ad fraud.
Read how StegoAd stayed hidden for years ➝ https://thehackernews.com/2026/06/microsoft-removes-119-edge-extensions.html | 3 574 |
| 6 |  🚨 CVE-2026-55200 now has public PoC code.
The libssh2 flaw lets a malicious SSH server trigger memory corruption in a connecting client.
> No credentials
> No user interaction
> Affected through libssh2 1.11.1
The real cleanup problem is finding bundled and static copies in curl, Git, PHP, and appliances.
Learn more ➝ https://thehackernews.com/2026/06/public-poc-released-for-critical.html | 4 172 |
| 7 |  ⚠️ A trusted VS Code workspace can trigger the attack.
Hijacked npm packages used hidden folder-open tasks instead of npm lifecycle scripts.
JavaScript was hidden as a font file, resolved through blockchain dead drops, and used to deploy a Python infostealer.
Learn more ➝ https://thehackernews.com/2026/06/hijacked-npm-and-go-packages-use-vs.html | 4 344 |
| 8 |  🛑 A fake support SMS was the entry point.
Ukraine’s SSU and the FBI say Russian intelligence services targeted messaging accounts used by officials, military personnel, politicians, and activists.
The goal: steal credentials and sensitive information.
How the campaign worked: https://thehackernews.com/2026/06/ukraine-says-russian-intelligence-used.html | 7 655 |
| 9 |  ⚡ OpenAI is keeping GPT-5.6 behind a narrow gate.
Sol, Terra, and Luna are in limited preview for government-approved partners.
Sol adds stronger cyber safeguards for #vulnerability research, defensive testing, and dual-use requests.
Read: https://thehackernews.com/2026/06/openai-limits-gpt-56-rollout-as-sol.html | 7 625 |
| 10 |  🛑 Gaslight doesn’t just steal from #macOS.
It tries to talk the analyst’s AI tools out of analyzing it.
SentinelOne found a Rust-based implant with #Telegram C2 and 38 fake “system” messages built to make LLM-assisted triage abort or refuse.
Read: https://thehackernews.com/2026/06/new-gaslight-macos-malware-uses-prompt.html | 6 899 |
| 11 |  🚨 Russian intelligence-linked phishers have a new Signal trick.
FBI and CISA say they are asking targets to share their Signal Backup Recovery Key.
If they get it, they can restore old backups, read message history, and take over the account.
Here’s how the phishing works: https://thehackernews.com/2026/06/fbi-warns-russian-intelligence-hackers.html | 7 909 |
| 12 |  ⚠️ SharkLoader is delivering Cobalt Strike Beacon.
Experts say the StrikeShark campaign targeted government, diplomatic, and software development organizations across multiple countries.
Public CVE exploits, malicious installers, and DLL hijacking sit in the attack chain.
Read: https://thehackernews.com/2026/06/new-sharkloader-malware-deploys-cobalt.html | 6 776 |
| 13 | SOC teams don’t need another console.
They need alerts that connect across endpoint, cloud, identity, and network data.
One attack should not look like five separate incidents.
The analysis starts here: https://awards.thehackernews.com/blog/soc-doesnt-need-another-console/ | 5 897 |
| 14 |  CISA just added a Cisco Unified CM flaw to its exploited bugs list.
Defused Cyber says CVE-2026-20230 is being exploited from a single source using an unvetted PoC.
The bug can allow unauthenticated SSRF and file writes when WebDialer is enabled.
The technical trail is here: https://thehackernews.com/2026/06/cisco-unified-cm-flaw-exploited-after.html | 5 676 |
| 15 |  🚨 A new custom backdoor is hitting government and energy targets in Southeast Asia.
Unit 42 links it to CL-STA-1062, a Chinese-speaking APT cluster.
TinyRCT can run commands, steal files, capture screenshots, and support remote control.
Read: https://thehackernews.com/2026/06/chinese-speaking-apt-deploys-new.html | 5 420 |
| 16 |  🛑 A new #Linux kernel exploit (CVE-2026-46331) gets root without modifying a single file on disk.
It poisons the cached copy of /bin/su in memory. The binary on disk stays untouched. File-integrity checks come back clean.
The root shell is already open.
Details here ↓ https://thehackernews.com/2026/06/new-linux-pedit-cow-exploit-enables.html | 5 612 |
| 17 |  🛑 Opening a repo shouldn't hand over your AWS keys.
Amazon patched CVE-2026-12957, an #Amazon Q Developer flaw that let a malicious repo run code the moment you open and trust the workspace, with the developer's cloud credentials already attached.
No separate MCP approval. No second sign-in.
Learn how the attack worked 🠖 https://thehackernews.com/2026/06/amazon-q-developer-flaw-could-let.html | 5 569 |
| 18 |  🛑 A new #Linux kernel flaw lets a local user rewrite /usr/bin/su in memory and gain #root.
The file on disk never changes. No audit trail.
DirtyClone (CVE-2026-43503) is the fourth bug with this failure mode in two months.
Details and what to do ↓ https://thehackernews.com/2026/06/new-dirtyclone-linux-kernel-flaw-lets.html | 5 548 |
| 19 |  🚨 Attackers are exploiting a critical PTC flaw to drop JSP web shells.
CISA added CVE-2026-12569 to its KEV catalog after active exploitation was confirmed.
— Affected: PTC Windchill PDMlink and FlexPLM.
— Patch now. Hunt for IoCs.
Read more: https://thehackernews.com/2026/06/cisa-adds-exploited-ptc-windchill-rce.html | 5 263 |
| 20 |  🛑 Your IAM stack may not see what AI agents do after login.
They inherit human permissions, cross apps, and act at machine speed outside normal governance workflows.
Guardian agents bring runtime visibility and control.
Read the full guide: https://thehackernews.com/2026/06/guardian-agents-next-layer-of-identity.html | 5 184 |
