The Hacker News7h
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
The San Francisco-based company said the issue has the potential to put millions of American users' data at risk simply by ...
The Hacker News8h
Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces
Fortinet firewalls running firmware versions 7.0.14-7.0.16 targeted by attackers using zero-day vulnerabilities.
The Hacker News11h
Hackers Exploit Aviatrix Controller Vulnerability to Deploy Backdoors and Crypto Miners
CVE-2024-50603 in Aviatrix Controller enables remote code execution, cryptomining, and backdoor attacks. Patch now.
The Hacker News14h
Russian-Linked Hackers Target Kazakhstan in Espionage Campaign with HATVIBE Malware
Sekoia said the HATVIBE attack sequence demonstrates targeting and technical overlaps with APT28-related Zebrocy campaigns, ...
The Hacker News14h
The Hacker News | #1 Trusted Cybersecurity News Site — Index Page
Cybersecurity researchers have detailed a now-patched security flaw impacting Monkey's Audio (APE) decoder on Samsung ...
The Hacker News20h
CISA Adds Second BeyondTrust Flaw to KEV Catalog Amid Active Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a second security flaw impacting BeyondTrust ...
The Hacker News1d
âš¡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [13 January]
This week in cybersecurity: zero-day exploits, advanced malware, and the latest hacking tricks you need to know about.
The Hacker News1d
Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems
Hijacked 4,000+ backdoors via expired domains for $20, exposing government, academic, and private systems globally.
The Hacker News1d
WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables
Malicious JavaScript in WordPress checkout pages steals payment data, hides in wp_options, and exfiltrates encrypted details.
The Hacker News1d
Ransomware on ESXi: The Mechanization of Virtualized Attacks
In 2024, ransomware attacks targeting VMware ESXi servers reached alarming levels, with the average ransom demand ...
The Hacker News1d
DoJ Indicts Three Russians for Operating Crypto Mixers Used in Cybercrime Laundering
The U.S. Department of Justice (DoJ) on Friday indicted three Russian nationals for their alleged involvement in operating ...
The Hacker News4d
Google Project Zero Researcher Uncovers Zero-Click Exploit Targeting Samsung Devices
Google Project Zero researcher Natalie Silvanovich, who discovered and reported the shortcoming, described it as requiring no ...