News

The Hacker News3h

Google Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam Losses

Google said it's implementing a new policy requiring developers of cryptocurrency exchanges and wallets to obtain government ...
The Hacker News5h

CISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting N-able ...
The Hacker News14m

Simple Steps for Attack Surface Reduction

Blocking unknown apps and enforcing MFA reduce ransomware risk and credential theft across enterprise networks.
The Hacker News20h

Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flaws

Zoom and Xerox patched critical flaws enabling privilege escalation and RCE, risking corporate network compromise.
The Hacker News17h

New PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory Attacks

The starting point of the attack is a compressed archive that's delivered to victims via malvertising or search engine ...
The Hacker News22h

Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code

"An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in ...
The Hacker News21h

AI SOC 101: Key Capabilities Security Leaders Need to Know

An AI SOC brings together a range of capabilities that strengthen and scale the core functions of a security operations ...
The Hacker News1d

Charon Ransomware Hits Middle East Sectors Using APT-Level Evasion Tactics

Charon ransomware targets Middle East sectors using APT-style evasion, causing faster, harder-to-recover encryption.
The Hacker News1d

Cybercrime Groups ShinyHunters, Scattered Spider Join Forces in Extortion Attacks on Businesses

ShinyHunters and Scattered Spider are teaming up in a coordinated Salesforce phishing and extortion campaign, with ...
The Hacker News1d

Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws

Microsoft fixed 111 vulnerabilities, including a Windows Kerberos zero-day enabling full AD compromise via BadSuccessor.
The Hacker News1d

Fortinet SSL VPNs Hit by Global Brute-Force Wave Before Attackers Shift to FortiManager

Coordinated brute-force attacks hit Fortinet SSL VPNs and FortiManager, involving 780+ malicious IPs from U.S., Canada, ...
The Hacker News2d

Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors

Dutch NCSC warns of CVE-2025-6543 Citrix attacks on critical organizations, urging urgent patches to prevent further breaches ...