ch
Feedback
The Hacker News

The Hacker News

前往频道在 Telegram

⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. 📨 Contact: admin@thehackernews.com 🌐 Website: https://thehackernews.com

显示更多

📈 Telegram 频道 The Hacker News 的分析概览

频道 The Hacker News (@thehackernews) 英语 语言赛道中的 是活跃参与者。目前社区聚集了 161 788 名订阅者,在 技术与应用 类别中位列第 680,并在 美国 地区排名第 111

📊 受众指标与增长动态

невідомо 创建以来,项目保持高速增长,吸引了 161 788 名订阅者。

根据 15 七月, 2026 的最新数据,频道保持稳定运转。过去 30 天订阅人数变化为 37,过去 24 小时变化为 9,整体触达仍然可观。

  • 认证状态: 已认证(Telegram 官方确认)
  • 互动率 (ER): 平均受众互动率为 4.57%。内容发布后 24 小时内通常能获得 3.04% 的反应,占订阅者总量。
  • 帖子覆盖: 每篇帖子平均可获得 7 391 次浏览,首日通常累积 4 914 次浏览。
  • 互动与反馈: 受众积极参与,单帖平均反应数为 11
  • 主题关注点: 内容集中在 attack, credential, cve-2026, github, backdoor 等核心主题上。

📝 描述与内容策略

作者将该频道定位为表达主观观点的平台:
⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. 📨 Contact: admin@thehackernews.com 🌐 Website: https://thehackernews.com

凭借高频更新(最新数据采集于 16 七月, 2026),频道始终保持新鲜度与高覆盖。分析显示受众积极互动,使其成为 技术与应用 类别中的关键影响点。

161 788
订阅者
+924 小时
+307
+3730
帖子存档
🚨 ClickFix now delivers TELEPUZ, a new modular Windows malware. Paste the command behind a fake browser fix, and it can stea
🚨 ClickFix now delivers TELEPUZ, a new modular Windows malware. Paste the command behind a fake browser fix, and it can steal browser cookies, log keystrokes, capture screenshots, and run operator commands. How the attack chain gets there: https://thehackernews.com/2026/07/new-telepuz-malware-spreads-via.html

🔥 Hidden Infrastructure Exposed: ANY.RUN Reveals Hijacked Gov Websites Delivering Malware. ANY.RUN's latest threat investiga
🔥 Hidden Infrastructure Exposed: ANY.RUN Reveals Hijacked Gov Websites Delivering Malware. ANY.RUN's latest threat investigation uncovered previously undocumented backdoors and relationships behind the active PhantomEnigma campaign. By connecting hundreds of seemingly unrelated sandbox sessions, the analysts exposed the full scope of attacks targeting banks and public agencies. Read the exclusive report ↓ https://thehackernews.com/2026/07/20-hijacked-government-websites.html

🛑 ClickLock Stealer turns a Mac into a password trap. Cancel its fake prompt, and at the next login it kills Finder, Termina
🛑 ClickLock Stealer turns a Mac into a password trap. Cancel its fake prompt, and at the next login it kills Finder, Terminal, Activity Monitor, and major browsers every 210 milliseconds until a valid password is entered. The desktop comes back. One implant stays. How the trap works: https://thehackernews.com/2026/07/new-clicklock-macos-stealer-kills-apps.html

🛑 Claude Code, Codex, Gemini CLI, and three browser agents were vulnerable to an attack that makes forged data look trusted.
🛑 Claude Code, Codex, Gemini CLI, and three browser agents were vulnerable to an attack that makes forged data look trusted. It could lead to wrong clicks or running an attacker’s command, even when the user is asked to approve the action. Why current defenses miss it: https://thehackernews.com/2026/07/new-agent-data-injection-attack-can.html

⚠️ Stupig can run SYSTEM commands from the Windows logon screen before anyone signs in. The previously unreported backdoor su
⚠️ Stupig can run SYSTEM commands from the Windows logon screen before anyone signs in. The previously unreported backdoor surfaced alongside Daxin on a #Taiwan manufacturer’s host, where the intrusion may have gone unnoticed for 13 years. How it hides inside Windows logon: https://thehackernews.com/2026/07/daxin-resurfaces-in-taiwan-alongside.html

AI can generate polished vulnerability reports, payloads, and severity scores in seconds. That does not prove the bug is reac
AI can generate polished vulnerability reports, payloads, and severity scores in seconds. That does not prove the bug is reachable, exploitable, or even real. Without validation, faster testing becomes faster noise. Why offensive security still runs on proof: https://thehackernews.com/2026/07/ai-can-find-bugs-but-human-knowledge.html

🛑 ALERT - Pull one certificate from a Shark robot vacuum, and it could run root commands on other Shark vacuums across the s
🛑 ALERT - Pull one certificate from a Shark robot vacuum, and it could run root commands on other Shark vacuums across the same AWS region. In 24 hours, a researcher saw 673,816 devices return Exec_Response, which he treats as confirmation that they support the command handler. Read how it worked - https://thehackernews.com/2026/07/unpatched-shark-vacuum-flaw-could-let.html

⚡ OpenAI built an AI model to attack its own AI models. GPT-Red develops prompt injections automatically. In one test, it got
⚡ OpenAI built an AI model to attack its own AI models. GPT-Red develops prompt injections automatically. In one test, it got an AI vending machine to order a $100 item for $0.50 and cancel another customer’s order. Read more on GPT-Red » https://thehackernews.com/2026/07/openais-gpt-red-automates-prompt.html

A valid login is not always enough. A password may let someone read an account, but not change payout details. OIDC AMR, ACR,
A valid login is not always enough. A password may let someone read an account, but not change payout details. OIDC AMR, ACR, and SAML AuthnContext help applications decide when stronger proof is required. How each signal works: https://thehackernews.com/expert-insights/2026/07/authncontext-and-amr-we-remember-what.html

🚨 Zoom has patched a 9.8-rated Windows flaw that could let an unauthenticated attacker take over accounts via network access
🚨 Zoom has patched a 9.8-rated Windows flaw that could let an unauthenticated attacker take over accounts via network access. CVE-2026-53412 affects the Desktop Client, VDI Client, and Meeting SDK. Affected versions and update details: https://thehackernews.com/2026/07/zoom-patches-critical-windows-flaw-that.html

⚠️ Researchers found raw LLM reasoning and an AI safety disclaimer left inside TuxBot v3 Evolution. The unfinished IoT botnet
⚠️ Researchers found raw LLM reasoning and an AI safety disclaimer left inside TuxBot v3 Evolution. The unfinished IoT botnet packs 1,496 Telnet credential pairs and exploit code for more than 30 device families. What already works: https://thehackernews.com/2026/07/tuxbot-v3-evolution-shows-signs-of-llm.html

⚠️ On an infected Windows PC, OkoBot can make a fake seed phrase request appear inside the real Ledger Live or Trezor Suite a
⚠️ On an infected Windows PC, OkoBot can make a fake seed phrase request appear inside the real Ledger Live or Trezor Suite app. The app looks genuine because it is genuine. The request is not. It may even wait until you plug in the hardware wallet. Here's how this trap works: https://thehackernews.com/2026/07/okobot-malware-framework-injects-seed.html

🚨 Public exploit code is available for two critical #Firefox flaws. Google fixed 15 #Chrome bugs, #Adobe patched 88 vulnerab
🚨 Public exploit code is available for two critical #Firefox flaws. Google fixed 15 #Chrome bugs, #Adobe patched 88 vulnerabilities across ColdFusion, Commerce, Experience Manager, and Illustrator, and Broadcom closed a critical #VMware Avi authentication bypass. Full patch roundup: https://thehackernews.com/2026/07/firefox-chrome-adobe-and-vmware-updates.html

AI-driven threats move daily, but most security programs still rely on week-old spreadsheets to report risk to the board. Join next week’s Axonius webinar as Frederico Hakamine breaks down how to close this reporting gap with automated baselines and metrics that stand up to executive scrutiny. Cyber Metrics That Matter in the Age of AI >> https://thn.news/cyber-metrics

Traditional SASE sees the HTTPS connection to an LLM, not the intent inside it. An AI agent can use MCP tools to pull proprie
Traditional SASE sees the HTTPS connection to an LLM, not the intent inside it. An AI agent can use MCP tools to pull proprietary code or internal documents while the proxy sees only valid encrypted traffic. What changes at the point of interaction: https://thehackernews.com/2026/07/sase-has-ai-blind-spot-inspecting.html

🛑 Right after #Microsoft’s July Patch Tuesday, Chaotic Eclipse dropped a Windows 0-Day PoC that still works on every support
🛑 Right after #Microsoft’s July Patch Tuesday, Chaotic Eclipse dropped a Windows 0-Day PoC that still works on every supported desktop and server release. It is the latest turn in the researcher’s months-long dispute with Microsoft. Here's what LegacyHive exploit can do - https://thehackernews.com/2026/07/researcher-drops-new-windows-zero-day.html

One approved marketing tag can quietly load unvetted fourth-party code into your site. Those scripts can access forms, checko
One approved marketing tag can quietly load unvetted fourth-party code into your site. Those scripts can access forms, checkout fields, and customer data long after the original vendor review. How the approval gap forms: https://thehackernews.com/2026/07/new-webinar-closing-approval-gap-in-ai.html

🚨 Cursor on Windows can silently run an attacker-supplied binary when a developer opens a cloned repository. A repo-root git
🚨 Cursor on Windows can silently run an attacker-supplied binary when a developer opens a cloned repository. A repo-root git.exe is enough. No prompt, agent, approval, or prior access. It runs as the logged-in user. Reported in December. Still unpatched. How it works and what stops it: https://thehackernews.com/2026/07/cursor-flaw-lets-malicious-cloned.html

🚨 Five poisoned versions of four AsyncAPI npm packages shipped a multi-stage botnet loader. They carried valid provenance at
🚨 Five poisoned versions of four AsyncAPI npm packages shipped a multi-stage botnet loader. They carried valid provenance attestations, and the malware ran when affected modules were loaded, not at install time. How trusted releases carried the malware: https://thehackernews.com/2026/07/compromised-asyncapi-npm-packages.html

🛑 Two SonicWall SMA 1000 zero-days are under active attack, the company says. One could let authenticated attackers run OS c
🛑 Two SonicWall SMA 1000 zero-days are under active attack, the company says. One could let authenticated attackers run OS commands as administrator. The other is a CVSS 10.0 SSRF flaw. What to patch and check: https://thehackernews.com/2026/07/two-sonicwall-sma-1000-zero-days.html