The Hacker News
β Official THN Telegram Channel β A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. π¨ Contact: admin@thehackernews.com π Website: https://thehackernews.com
Show moreπ Analytical overview of Telegram channel The Hacker News
Channel The Hacker News (@thehackernews) in the English language segment is an active participant. Currently, the community unites 161 681 subscribers, ranking 695 in the Technologies & Applications category and 116 in the USA region.
π Audience metrics and dynamics
Since its creation on Π½Π΅Π²ΡΠ΄ΠΎΠΌΠΎ, the project has demonstrated rapid growth, gathering an audience of 161 681 subscribers.
According to the latest data from 10 June, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by -1 445 over the last 30 days and by 6 over the last 24 hours, overall reach remains high.
- Verification status: Verified (Officially confirmed by Telegram)
- Engagement rate (ER): The average audience engagement rate is 5.20%. Within the first 24 hours after publication, content typically collects 3.20% reactions from the total number of subscribers.
- Post reach: On average, each post receives 8 405 views. Within the first day, a publication typically gains 5 182 views.
- Reactions and interaction: The audience actively supports content: the average number of reactions per post is 17.
- Thematic interests: Content is focused on key topics such as attack, credential, cve-2026, github, backdoor.
π Description and content policy
The author describes the resource as a platform for expressing subjective opinions:
ββ Official THN Telegram Channel β A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking.
π¨ Contact: admin@thehackernews.com
π Website: https://thehackernews.comβ
Thanks to the high frequency of updates (latest data received on 11 June, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.
Data loading in progress...
| Date | Subscriber Growth | Mentions | Channels | |
| 11 June | +15 | |||
| 10 June | +43 | |||
| 09 June | +44 | |||
| 08 June | +20 | |||
| 07 June | +16 | |||
| 06 June | +27 | |||
| 05 June | +30 | |||
| 04 June | +31 | |||
| 03 June | +28 | |||
| 02 June | +13 | |||
| 01 June | +14 |
| 2 | AI is changing vulnerability management fast.
New flaws can now be found by the thousands, and exploit timelines are shrinking to hours. But Verizon says known-exploited vulnerabilities still take a median 43 days to fix.
That gap is now the real risk.
Why patching alone is no longer enough: https://thehackernews.com/2026/06/ai-broke-vulnerability-management-thats.html | 1 372 |
| 3 | This week in #ThreatsDay Bulletin:
πͺ± Attack toolkit leaked on GitHub. For free.
π€ AI agents failed basic phishing tests
π‘ EDR killed with a built-in Windows policy
π³ NFC card data stolen via fake banking apps
π North Korea behind 47% of tech sector hacks
π 3.3 billion stolen creds now in the wild
31 stories. Wild week.
Read all latest stories β https://thehackernews.com/2026/06/threatsday-bulletin-worm-code-leaked-ai.html | 1 410 |
| 4 | This week in #ThreatsDay Bulletin:
πͺ± Attack toolkit leaked on GitHub. For free.
π€ AI agents failed basic phishing tests
π‘ EDR killed with a built-in Windows policy
π³ NFC card data stolen via fake banking apps
π North Korea behind 47% of tech sector hacks
π 3.3 billion stolen creds now in the wild
31 stories. Wild week.
Read all latest stories on @TheHackersNews β https://thehackernews.com/2026/06/threatsday-bulletin-worm-code-leaked-ai.html | 1 |
| 5 | π A stock app in Vietnam pushed a routine update. It was malware.
ESET says OceanLotus hijacked FireAnt Metakit's own update server to plant the SPECTRALVIPER backdoor on select investors.
The flaw? No signature check. So the app trusted it.
Read: https://thehackernews.com/2026/06/oceanlotus-hits-vietnam-investors-with.html | 3 599 |
| 6 | πͺ GitHub is tightening npm security.
In npm 12, "npm install" won't run dependency install scripts by default. Git and remote URL dependencies will need approval too.
The goal: cut supply chain risk from compromised packages.
See what's changing: https://thehackernews.com/2026/06/github-to-disable-npm-install-scripts.html | 4 324 |
| 7 | π€ A China-linked botnet survived a U.S. takedown β and got bigger.
JDY now runs on 1,500+ hacked SOHO and IoT devices, scanning exposed services and feeding targeting data to Chinese threat actors.
Read the full story: https://thehackernews.com/2026/06/china-linked-jdy-botnet-expands-to-1500.html | 6 145 |
| 8 | π¨ Ivanti, Fortinet, and SAP releases patches for critical flaws that could enable code execution, admin takeover, or data exposure.
The worst one hits Ivanti Sentry, a CVSS 10.0 remote root-level RCE with no login needed.
FortiSandbox got a 9.1 command injection fix, and SAP patched four critical bugs, including SAML identity tampering.
Read: https://thehackernews.com/2026/06/ivanti-fortinet-and-sap-release-patches.html | 5 923 |
| 9 | β οΈ An unpatched Langflow flaw is now being exploited in the wild.
The catch: default auto-login can let attackers reach the vulnerable endpoint without credentials, then run their own code.
About 7,000 Langflow instances are exposed online.
Read: https://thehackernews.com/2026/06/unpatched-langflow-flaw-cve-2026-5027.html | 5 188 |
| 10 | π¨ A serious flaw in Arista switches is being exploited right now β and Arista says it won't fix it.
It's one of 3 actively exploited bugs CISA just flagged, alongside Cisco and Google Chrome.
Federal agencies have until June 23 to act.
Read: https://thehackernews.com/2026/06/cisa-adds-cisco-chrome-and-arista-flaws.html | 4 955 |
| 11 | The Forrester Waveβ’: Governance, Risk, And Compliance Platforms, Q2 2026
The speed of risk has accelerated. With AI and automation, businesses need to change the pace in order to not just keep up, but stay ahead.
π Access your complimentary copy of The Forrester Waveβ’: Governance, Risk, And Compliance Platforms, Q2 2026 and discover the latest insights.
https://thn.news/forrester-wave-2026 | 4 682 |
| 12 | π A clean pentest report can be the most dangerous thing in your inbox.
Your tool proves an attacker could move laterally. It never tells you if your EDR blocked it or your SIEM caught it.
A reachable path is not a defended one.
Join THN + Picus Security to see what your tool validates, where it stops, and how to close the gap.
Save your seat: https://thehackernews.com/2026/06/your-automated-pentest-looks-clean-see.html | 5 182 |
| 13 | π¨ Microsoft just dropped a record 206 security fixes.
Three bugs were already public. 39 are rated Critical. Some can let attackers run code over the network or bypass #BitLocker.
This is the Patch Tuesday list admins should not skim.
See what Microsoft fixed: https://thehackernews.com/2026/06/microsoft-patches-record-206-flaws.html | 5 241 |
| 14 | π¨ Researchers built an AI agent that hacks Salesforce sites on its own. Give it a URL, and it does the rest.
Reco's Nitay Bachrach showed it maps the site, finds the flaws, writes the exploit, and pulls real data. One unauthenticated request leaked a partner's name, phone, and full billing address. It even scraped LinkedIn to build a target list.
See how π https://thehackernews.com/expert-insights/2026/06/hacking-salesforce-sites-with-llm-agent.html | 5 060 |
| 15 | Anthropic released its most powerful Claude AI yet β but not everyone gets the same version.
π‘οΈ Fable 5 is for the public, with limits on risky cyber requests.
π₯ Mythos 5 is for vetted defenders, with those cyber limits removed.
See what Anthropic is trying to stop: https://thehackernews.com/2026/06/anthropic-releases-claude-fable-5-its.html | 5 326 |
| 16 | π ServiceNow patched a flaw that could let unauthenticated users gain deeper access to certain instances.
It found evidence of successful instance-table queries against a subset of customers.
Still no CVE.
What affected customers need to know: https://thehackernews.com/2026/06/servicenow-flaw-exploited-to-gain.html | 5 290 |
| 17 | π¨ Fully patched Windows 10 and 11 are still at risk from a new Microsoft Defender zero-day.
The exploit, "RoguePlanet," can hand attackers full SYSTEM control when it works.
It's the latest public drop from a researcher feuding with Microsoft.
Read: https://thehackernews.com/2026/06/microsoft-defender-rogueplanet-zero-day.html | 5 567 |
| 18 | π¨ Six new flaws in protobuf.js can let attackers run code on your servers.
Just one bad schema is enough to take over a Node.js app.
It also hits cloud SDKs, CI/CD pipelines, and AI systems.
See if you're affected and what to patch: https://thehackernews.com/2026/06/six-proto6-vulnerabilities-in.html | 5 655 |
| 19 | π¨ Microsoft is bringing some #GitHub repos back online. Others are still down.
The Miasma worm hit 73 of its open-source projects and planted an info stealer. Now it's warning affected customers.
See what happened π https://thehackernews.com/2026/06/microsoft-restores-some-github-repos.html | 6 440 |
| 20 | π¨ Bought a tent online? Meta now wants to know.
Starting next month, Meta will use what you do on other websites, like your purchases and games, to shape your Feed and AI chatbot replies, not just your ads.
It says you can opt out. Most people won't know how.
Read more about this here: https://thehackernews.com/2026/06/meta-to-use-off-site-business-data-for.html | 6 068 |
Available now! Telegram Research 2025 β the year's key insights 
