The Hacker News43 分钟
Zyxel CPE Devices Face Active Exploitation Due to Unpatched CVE-2024-40891 Vulnerability
Critical zero-day vulnerability CVE-2024-40891 in Zyxel CPE devices is under active attack, affecting 1,500+ devices.
The Hacker News12 小时
Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks
DeepSeek’s chatbot app tops Apple’s U.S. free chart, but malicious attacks force registration limits. Privacy concerns arise ...
The Hacker News18 小时
Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations
Cybersecurity researchers have found that ransomware attacks targeting ESXi systems are also leveraging the access to ...
The Hacker News18 小时
AI SOC Analysts: Propelling SecOps into the future
AI SOC Analysts transform security operations, reducing investigation times, cutting MTTR by 70%, and enabling 24/7 ...
The Hacker News15 小时
OAuth Redirect Flaw in Airline Travel Integration Exposes Millions to Account Hijacking
API vulnerability in airline-linked travel service exposed millions to account takeovers, booking fraud, and data theft ...
The Hacker News19 小时
How Long Does It Take Hackers to Crack Modern Hashing Algorithms?
Long, complex passwords with bcrypt take 27,154 years to crack, but reused or breached credentials remain a top vulnerability ...
The Hacker News19 小时
E.U. Sanctions 3 Russian Nationals for Cyber Attacks Targeting Estonia's Key Ministries
EU sanctions three GRU officers for cyber attacks stealing classified data from Estonia’s ministries, compromising national ...
The Hacker News13 小时
PureCrypter Deploys Agent Tesla and New TorNet Backdoor in Ongoing Cyberattacks
Since July 2024, a phishing campaign in Poland and Germany has used PureCrypter to deploy TorNet via TOR, evading cloud ...
The Hacker News1 天
Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More
Apple addresses a zero-day flaw (CVE-2025-24085) and fixes 9 vulnerabilities in iOS 18.3, macOS Sequoia 15.3, and more.
The Hacker News1 天
GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs
"Using a maliciously crafted URL it's possible to cause the credential request coming from Git to be misinterpreted by Github ...
The Hacker News1 天
MintsLoader Delivers StealC Malware and BOINC in Targeted Cyber Attacks
Threat hunters have detailed an ongoing campaign that leverages a malware loader called MintsLoader to distribute secondary ...
The Hacker News1 天
Do We Really Need The OWASP NHI Top 10?
While crucial, the existing OWASP Top 10 lists don't properly address the unique challenges NHIs present. Being the critical ...