The Hacker News
⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking. 📨 Contact: admin@thehackernews.com 🌐 Website: https://thehackernews.com
Mostrar más📈 Análisis del canal de Telegram The Hacker News
El canal The Hacker News (@thehackernews) en el segmento lingüístico de Inglés es un actor destacado. Actualmente la comunidad reúne a 161 564 suscriptores, ocupando la posición 693 en la categoría Tecnologías y Aplicaciones y el puesto 107 en la región EEUU.
📊 Métricas de audiencia y dinámica
Desde su creación el невідомо, el proyecto ha mostrado un crecimiento acelerado, reuniendo a 161 564 suscriptores.
Según los últimos datos del 30 junio, 2026, el canal mantiene una actividad estable. En los últimos 30 días la variación de miembros fue de -378, y en las últimas 24 horas de -15, conservando un alto alcance.
- Estado de verificación: Verificado (confirmado oficialmente por Telegram)
- Tasa de interacción (ER): El promedio de interacción de la audiencia es 4.61%. Durante las primeras 24 horas tras publicar, el contenido suele obtener 3.08% de reacciones respecto al total de suscriptores.
- Alcance de las publicaciones: Cada publicación recibe en promedio 7 453 visualizaciones. En el primer día suele acumular 4 977 visualizaciones.
- Reacciones e interacción: La audiencia responde de forma activa: el promedio de reacciones por publicación es 14.
- Intereses temáticos: El contenido se centra en temas clave como attack, credential, cve-2026, github, backdoor.
📝 Descripción y política de contenido
El autor describe el recurso como un espacio para expresar opiniones subjetivas:
“⭐ Official THN Telegram Channel — A trusted, widely read, independent source for breaking news and tech coverage about cybersecurity and hacking.
📨 Contact: admin@thehackernews.com
🌐 Website: https://thehackernews.com”
Gracias a la alta frecuencia de actualizaciones (últimos datos recibidos el 01 julio, 2026), el canal mantiene la vigencia y un amplio alcance. La analítica demuestra que la audiencia interactúa activamente con el contenido, lo que lo convierte en un punto de referencia dentro de la categoría Tecnologías y Aplicaciones.
Carga de datos en curso...
| Fecha | Crecimiento de Suscriptores | Menciones | Canales | |
| 01 julio | +1 |
| 2 | 🛑 A new RustDuck botnet is turning routers, cameras, Android boxes, and poorly secured servers into DDoS nodes.
It spreads through weak Telnet/SSH logins, exposed ADB, and old flaws, while its newer core is being rewritten in Rust.
Details 🠒 https://thehackernews.com/2026/06/rustduck-botnet-rebuilds-in-rust-to.html | 2 788 |
| 3 | 🚨 CVE-2026-33017 is being exploited against Langflow.
Attackers abuse an unauthenticated API endpoint to run Python code, drop Lambsys, and launch a Monero miner.
Lambsys can spread via reused SSH keys.
Langflow attack chain: https://thehackernews.com/2026/06/langflow-rce-exploited-to-deploy-monero.html | 3 459 |
| 4 | ⚠️ A fake “Google Notes” extension is swapping #cryptocurrency wallet addresses inside Chromium browsers.
Experts call it "Silent Swap"
Unsigned .NET and Golang installers inject the extension, alter browser preference files, and use EtherHiding to rotate C2.
Details here ➝ https://thehackernews.com/2026/06/silent-swap-crypto-clipper-uses-fake.html | 3 603 |
| 5 | 🛑 Old shell tricks didn’t die. They found a new target 🠒 AI coding agents.
Researchers shows how Bash parsing can slip past weak text-based command guards, letting r''m become rm before execution.
GuardFall bypass worked on 10 of 11 open-source agents tested.
Read how it works: https://thehackernews.com/2026/06/guardfall-exposes-open-source-ai-coding.html | 3 598 |
| 6 | 🛑 A leaked AI key is not just a secret anymore.
It is a running bill.
Researchers tested 444 iOS AI chatbot apps. Over 250 exposed paid LLM access through network traffic.
> Plaintext keys
> Replayable tokens
> Open backend proxies with no auth
Read the THN report: https://thehackernews.com/2026/06/282-ios-apps-found-leaking-llm-api-keys.html | 3 656 |
| 7 | Fraud infrastructure for FIFA World Cup 2026 was already in place before June 11 kickoff.
Check Point saw 60x spike in fake sportsbook apps (64 samples) + large-scale travel/phishing domains, some with MX set for email interception.
Full report: https://thehackernews.com/2026/06/what-numbers-say-about-fifa-2026-cyber.html | 3 884 |
| 8 | 🛑 SimpleHelp RMM CVE-2026-48558 exploited for OIDC authentication bypass.
Attackers gain technician sessions to deploy TaskWeaver and Djinn Stealer. Djinn Stealer targets cloud, code, AI tools, browsers, SSH, and wallets.
Read the full story: https://thehackernews.com/2026/06/attackers-exploit-simplehelp-cve-2026.html | 4 273 |
| 9 | 🚨 Nearby file sharing has a local blind spot.
Researchers found six flaws in AirDrop and Quick Share that can crash sharing services, bypass Samsung session checks, and trigger a crash in Google’s Windows app.
Apple and Google have started fixes.
Read: https://thehackernews.com/2026/06/airdrop-and-quick-share-flaws-let.html | 4 589 |
| 10 | 🎮 Tell an AI browser it’s just playing a game.
Researchers say "BioShocking" tricked six AI agents, including #ChatGPT Atlas, Comet, and #Claude, into copying GitHub SSH credentials from a signed-in session.
Read how the attack chain worked: https://thehackernews.com/2026/06/new-bioshocking-attack-tricks-ai.html | 4 544 |
| 11 | ⚠️ Public PoC is out for CVE-2026-8037, a critical Progress Kemp LoadMaster API flaw.
It lets unauthenticated attackers run root commands when the API is enabled.
Patch now. Restrict API exposure.
Full story: https://thehackernews.com/2026/06/progress-kemp-loadmaster-flaw-could-let.html | 4 596 |
| 12 | ⚡ Apple patched WebKit bugs found with AI tools.
The updates fix 30+ flaws across:
> iOS 26.5.2
> macOS Tahoe 26.5.2
> Safari 26.5.2
The fixes include WebKit CVEs, sandbox issues, and kernel-level bugs.
Details: https://thehackernews.com/2026/06/apple-patches-30-ios-macos-safari-flaws.html | 4 761 |
| 13 | 🚨 Oracle E-Business Suite has a new active exploitation problem.
CVE-2026-46817 is a CVSS 9.8 flaw in Oracle Payments that can allow unauthenticated HTTP takeover.
No public PoC. Attribution unknown.
Read the full report: https://thehackernews.com/2026/06/oracle-e-business-suite-flaw-cve-2026.html | 5 126 |
| 14 | 🛑 The extension did not need to steal passwords to be dangerous.
Microsoft found a fake #Perplexity Chrome extension that logged searches and address bar input before redirecting users to real results.
How it worked, and what users should check: https://thehackernews.com/2026/06/malicious-perplexity-chrome-extension.html | 5 924 |
| 15 | 🔥 #WhatsApp is finally getting usernames.
The app has started global username reservations before a wider rollout later this year.
So people can message each other without handing over a phone number.
Details here: https://thehackernews.com/2026/06/whatsapp-is-finally-getting-usernames.html | 6 245 |
| 16 | ⚡ DirtyClone leads the week, but the rest of the queue is ugly:
🐧 Linux root bug
🚨 PTC exploited
🍎 Gaslight malware
🎯 Turla backdoor
🧹 StealC takedown
🤖 Agent prompt injection
🕵️ New infostealers
📺 DVR proxy abuse
🧩 Urgent CVEs
Full recap: https://thehackernews.com/2026/06/weekly-recap-linux-kernel-flaws-ai.html | 5 608 |
| 17 | ⚠️ Mustang Panda hid C2 in cloud traffic.
Acronis says the China-aligned group abused Zoho WorkDrive as a command channel in campaigns against Indian government and hydropower targets.
ZOHOMURK read commands from an inbox folder and wrote stolen output to an outbox.
Read 🠖 https://thehackernews.com/2026/06/mustang-panda-uses-zoho-workdrive-as.html | 5 393 |
| 18 | Your encrypted credentials may not stay encrypted forever.
Attackers can harvest them now, store them, and decrypt them later when quantum hardware catches up.
That is why post-quantum migration should start with long-lived credentials and machine identities.
Read the full story: https://thehackernews.com/2026/06/why-post-quantum-cryptography-starts.html | 5 167 |
| 19 | 🛑 EvilTokens hides account takeover risk from your SOC.
Static URL analysis misses it as the phishing page appears only after browser-side decryption. Avoid visibility gaps and accelerate response by uncovering the full attack flow in 1 min.
Read ➝ https://thn.news/ghost-analysis-2023 | 5 193 |
| 20 | 🛑 236,493 scam domains.
Experts say DCloud Uni-App templates are being used to run fake crypto exchanges, #WhatsApp phishing, gambling scams, and wallet drainers.
Read the full story ➝ https://thehackernews.com/2026/06/236000-dcloud-uni-app-sites-used-in.html | 5 192 |
¡Ya disponible! Investigación de Telegram 2025 — los principales insights del año 
