News

The Hacker News13h

SonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware Hackers

Rapid7, in its alert, said it has also observed threat actors accessing the Virtual Office Portal hosted by SonicWall ...
The Hacker News9h

Senator Wyden Urges FTC to Probe Microsoft for Ransomware-Linked Cybersecurity Negligence

U.S. Senator Ron Wyden has called on the Federal Trade Commission (FTC) to probe Microsoft and hold it responsible for what ...
The Hacker News18h

AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto

AsyncRAT exploits ConnectWise ScreenConnect via fileless loader, stealing credentials and crypto data, maintaining ...
The Hacker News9h

Google Pixel 10 Adds C2PA Support to Verify AI-Generated Media Authenticity

Google Pixel 10 integrates C2PA Content Credentials with offline cryptographic security, boosting media transparency and ...
The Hacker News15h

Cracking the Boardroom Code: Helping CISOs Speak the Language of Business

When CISOs build these skills, they move from talking about technical metrics to explaining risk in terms that link to ...
The Hacker News15h

Fake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business Accounts

The malvertising campaign, per Bitdefender, is designed to push fake " Meta Verified " browser extensions named SocialMetrics ...
The Hacker News1d

Watch Out for Salty2FA: New Phishing Kit Targeting US and EU Enterprises

Salty2FA phishing kit active since June 2025 bypasses 2FA in US and EU campaigns, fueling enterprise breaches.
The Hacker News1d

SAP Patches Critical NetWeaver (CVSS Up to 10.0) and High-Severity S/4HANA Flaws

SAP patches critical NetWeaver and S/4HANA flaws (CVSS 8.1–10.0), preventing code execution, file upload, and data loss.
The Hacker News1d

China-Linked APT41 Hackers Target U.S. Trade Officials Amid 2025 Negotiations

The House Select Committee on China has formally issued an advisory warning of an "ongoing" series of highly targeted cyber ...
The Hacker News1d

Chinese APT Deploys EggStreme Fileless Malware to Breach Philippine Military Systems

EggStreme malware targets Philippines military with fileless multi-stage attacks, enabling persistent espionage and data ...
The Hacker News1d

CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems

CHILLYHELL macOS malware, notarized since 2021, exposed May 2025 with flexible persistence and C2 evasion tactics.
The Hacker News1d

Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety

Apple’s iPhone 17 debuts Memory Integrity Enforcement, blocking buffer overflows and spyware exploits with minimal ...