News

The Hacker News13h
Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed
It's currently not known in what context the vulnerability is being exploited, but the development makes it the second ...
The Hacker News13h
⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors
Nation-state intrusions. Deepfake-ready malware. AI-powered influence ops. New CVEs, old threats reborn, and spyware with ...
The Hacker News23h
Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data
Golden Chickens launch TerraStealerV2 and TerraLogger; both still developing but actively steal data via OCX payloads.
The Hacker News12h
Perfection is a Myth. Leverage Isn't: How Small Teams Can Secure Their Google Workspace
Stolen credentials remain the top attack vector + Google’s MFA and access controls reduce breach risk + Identity is now the ...
The Hacker News1h
Critical Langflow Flaw Added to CISA KEV List Amid Ongoing Exploitation Evidence
A recently disclosed critical security flaw impacting the open-source Langflow platform has been added to the Known Exploited Vulnerabilities ( KEV) catalog by the U.S. Cybersecurity and ...
The Hacker News22h
Dissecting the 2025 Microsoft Vulnerabilities Report: Key Trends and Insights
Microsoft disclosed a record 1,360 vulnerabilities in 2024 + Critical bugs dropped to 78 + Risks shift toward EoP, cloud, and ...
The Hacker News12h
Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi
The vulnerabilities, in a nutshell, could enable zero- or one-click remote code execution (RCE), access control list (ACL) and user interaction bypass, local arbitrary file read, information ...