Available now! Telegram Research 2025 โ the year's key insights 
The Hacker News
Open in Telegram
โญ Official THN Telegram Channel โ A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. ๐จ Contact: admin@thehackernews.com ๐ Website: https://thehackernews.com
Show more๐ Analytical overview of Telegram channel The Hacker News
Channel The Hacker News (@thehackernews) in the English language segment is an active participant. Currently, the community unites 161 747 subscribers, ranking 696 in the Technologies & Applications category and 117 in the USA region.
๐ Audience metrics and dynamics
Since its creation on ะฝะตะฒัะดะพะผะพ, the project has demonstrated rapid growth, gathering an audience of 161 747 subscribers.
According to the latest data from 05 June, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by -1 262 over the last 30 days and by -8 over the last 24 hours, overall reach remains high.
- Verification status: Verified (Officially confirmed by Telegram)
- Engagement rate (ER): The average audience engagement rate is 5.23%. Within the first 24 hours after publication, content typically collects 3.31% reactions from the total number of subscribers.
- Post reach: On average, each post receives 8 461 views. Within the first day, a publication typically gains 5 361 views.
- Reactions and interaction: The audience actively supports content: the average number of reactions per post is 16.
- Thematic interests: Content is focused on key topics such as attack, credential, cve-2026, github, backdoor.
๐ Description and content policy
The author describes the resource as a platform for expressing subjective opinions:
โโญ Official THN Telegram Channel โ A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking.
๐จ Contact: admin@thehackernews.com
๐ Website: https://thehackernews.comโ
Thanks to the high frequency of updates (latest data received on 06 June, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.
161 747
Subscribers
-824 hours
-2237 days
-1 26230 days
Posts Archive
161 747
โก Your Smart TV might be scraping the web for ๐ค AI.
Not hacked. You tapped "accept" for fewer ads.
It said "occasionally." The fine print allows 200 GB a month.
Read โ https://thehackernews.com/2026/06/free-apps-are-quietly-turning-smart-tvs.html
Your IP. Your bandwidth. Someone else's bot.
161 747
๐จ A SolarWinds Serv-U bug is now on CISAโs exploited list.
CVE-2026-28318 can let unauthenticated requests crash the file server.
Patch: Serv-U 15.5.4 HF1.
Federal agencies have until June 19, 2026.
Read: https://thehackernews.com/2026/06/cisa-adds-actively-exploited-solarwinds.html
161 747
๐ฅ AI just found 21 zero-days in FFmpeg.
Thatโs the video library bundled inside many apps, tools, containers, and devices. Some bugs sat untouched for 15โ20 years.
Google Chrome also dropped PATCHES for a record 429 vulnerabilities this week.
Read: https://thehackernews.com/2026/06/ai-agent-uncovers-21-zero-days-in.html
161 747
๐จ 73 Microsoft GitHub repos just went dark.
They were hit by Miasma, a self-replicating supply chain attack spreading through trusted open-source channels.
Azure and MicrosoftDocs repos were among those impacted.
Read this: https://thehackernews.com/2026/06/miasma-worm-hits-73-microsoft-github.html
161 747
๐จ New Cisco SD-WAN vulnerability under active exploitation.
CVE-2026-20245 lets authenticated netadmin attackers run commands as root via crafted file uploads.
No patches or mitigations are available.
Check /var/log/scripts.log for IoCs.
Read: https://thehackernews.com/2026/06/cisco-catalyst-sd-wan-manager-cve-2026.html
161 747
๐จMultiple npm attacks.
Same target โ developer secrets.
๐ธ One wave used 50+ poisoned packages to spread IronWorm, a Rust-based stealer.
๐ธ Another hit 57 npm packages across 286+ malicious versions with a new Miasma worm variant.
Read and Check what you installed recently: https://thehackernews.com/2026/06/ironworm-and-new-miasma-worm-variant.html
161 747
๐จ New #Android spyware Asin is targeting journalists and researchers in Arabic-speaking regions.
It spreads through fake websites impersonating government news, PDF editors, and war maps.
The apps hide #spyware behind useful features and were found on Android 15 devices.
Read: https://thehackernews.com/2026/06/android-spyware-asin-targets-arabic.html
161 747
๐จ A new China-linked threat cluster is going after Microsoft IIS servers.
OP-512 uses 3 custom web shells to get remote access, run commands, hide traces, and report hacked servers back to attackers.
Read: https://thehackernews.com/2026/06/new-threat-cluster-op-512-targets.html
161 747
Only 10% of SOCs say their AI tools actually deliver excellent value.
AI co-pilots jumped 145% and agents 118% last year โ yet 71% see little or no real benefit (SOC-CMM 2026 report).
Why? Most are just bolting on separate tools that speed up old silos instead of connecting the full workflow.
Full story: https://thehackernews.com/2026/06/only-10-of-socs-say-theyre-getting.html
161 747
โ ๏ธ Hackers are taking over #WordPress sites through a form plugin.
The bug is in Everest Forms Pro and lets unauthenticated attackers run code, create admin accounts, and plant web shells.
Update to v1.9.13 now.
Get the full details โ https://thehackernews.com/2026/06/hackers-exploit-critical-everest-forms.html
161 747
๐ Your World Cup 2026 ticket could be gone before the first whistle.
4,300+ Fake โฝ #FIFA sites are already live.
> Some steal logins
> Some sell fake tickets
> Some hide banking #malware inside streaming apps
Scammers are using ads, search results, Telegram, WhatsApp, and cloned sites.
If you plan to follow the #FIFAFever, read this first: https://thehackernews.com/2026/06/fifa-world-cup-2026-scams-are-already.html
161 747
๐จ Hackers turned hijacked cloud servers into a hidden email-sending network.
AWS. Google Cloud. Azure.
PCPJack tested which hosts could send mail, kept the working ones, and synced the proxy list every 5 minutes. What they planned to use it for is still unknown.
The setup was still live when found.
Learn more: https://thehackernews.com/2026/06/pcpjack-hijacks-230-aws-google-cloud.html
161 747
Agentic AI can accelerate defense decisions โ but only if the infrastructure is secure.
In classified environments: poisoned data, unauthorized access, and broken domain boundaries can break trust fast.
One frontier model was accessed within hours of preview.
Security must be built in from day one.
Read why it matters: https://thehackernews.com/2026/06/agentic-ai-is-transforming-defense-but.html
161 747
๐จ No auth required ... a crafted web request to Cisco Unified CM can write files to the OS and open a path to root.
CVE-2026-20230 patch is out, PoC exploit is public, and no attacks yet. Only bites if WebDialer is ON.
Fix: 14SU6 / COP / 15SU5, or kill WebDialer.
Read: https://thehackernews.com/2026/06/cisco-patches-cve-2026-20230-in-unified.html
161 747
๐จ One malicious GitHub issue could hijack Anthropicโs #ClaudeCode Action and turn prompt injection into repo write access.
In agent mode, a crafted issue could leak OIDC-related workflow credentials that attackers could replay.
The bypass trusted [bot] actors. Fixed in v1.0.94. Audit your workflows.
Details โ https://thehackernews.com/2026/06/claude-code-github-action-flaw-let-one.html
161 747
Most teams manage open source software by reaction. Get certified to govern it.
Open source software powers 98% of applications, yet most teams manage it by reaction, not design. This free, self-paced certification shows you how open-source dependencies enter your software supply chain, how to remediate vulnerabilities, and how to govern what reaches your environment.
Get certified for free: https://thn.news/activestate-security
161 747
ThreatsDay Bulletin is out.
๐ง ClickFix Tricks
๐ต๏ธ Sketchy C2 Tools
๐ JS Backdoors
๐ฎ Steam Profile Payloads
๐ค AI Agents Breaking Prod
๐ง Old Linux Bugs Back Again
๐ฆ RubyGems Cooldown
๐ Android Scam Defense
... and many more new stories.
But same lesson as always โ patch faster, trust less, watch the weird edges.
Read the recap: https://thehackernews.com/2026/06/threatsday-bulletin-ai-agents-gone.html
161 747
๐จ China-linked cybercrime group TA4922 is expanding phishing attacks beyond East Asia, targeting organizations in the UK, Germany, Italy, and South Africa.
The campaigns use HR, tax, and invoice lures to deploy:
๐น Atlas RAT
๐น RomulusLoader (New)
๐น SilentRunLoader (New)
Details: https://thehackernews.com/2026/06/china-linked-ta4922-expands-phishing.html
161 747
โก Skip investigation roadblocks with verified threat intelligence
Get insights from 15K+ SOC teams and 600K+ security professionals to make confident decisions faster.
Integrate TI Lookup for instant context โ https://thn.news/threat-intel-lookup
161 747
๐ Google and YouTube ads are delivering FlutterShell, a new #macOS backdoor that passed Apple notarization with valid Developer IDs.
The malware can hijack Chrome traffic, run shell commands, alter files, and update its behavior from attacker servers.
Read: https://thehackernews.com/2026/06/fluttershell-backdoor-spreads-to-macos.html
