The Hacker News4h
Zyxel CPE Devices Face Active Exploitation Due to Unpatched CVE-2024-40891 Vulnerability
Critical zero-day vulnerability CVE-2024-40891 in Zyxel CPE devices is under active attack, affecting 1,500+ devices.
The Hacker News3h
UAC-0063 Expands Cyber Attacks to European Embassies Using Stolen Documents
UAC-0063 was first flagged by the Romanian cybersecurity company in May 2023 in connection with a campaign that targeted ...
The Hacker News3h
Broadcom Warns of High-Severity SQL Injection Flaw in VMware Avi Load Balancer
VMware Avi Load Balancer flaw (CVE-2025-22217, CVSS 8.6) enables unauthenticated SQL injection. No workarounds exist—Broadcom ...
The Hacker News16h
Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks
DeepSeek’s chatbot app tops Apple’s U.S. free chart, but malicious attacks force registration limits. Privacy concerns arise ...
The Hacker News20h
Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations
Cybersecurity researchers have found that ransomware attacks targeting ESXi systems are also leveraging the access to ...
The Hacker News19h
OAuth Redirect Flaw in Airline Travel Integration Exposes Millions to Account Hijacking
API vulnerability in airline-linked travel service exposed millions to account takeovers, booking fraud, and data theft ...
The Hacker News22h
How Long Does It Take Hackers to Crack Modern Hashing Algorithms?
Long, complex passwords with bcrypt take 27,154 years to crack, but reused or breached credentials remain a top vulnerability ...
The Hacker News21h
AI SOC Analysts: Propelling SecOps into the future
AI SOC Analysts transform security operations, reducing investigation times, cutting MTTR by 70%, and enabling 24/7 ...
The Hacker News23h
E.U. Sanctions 3 Russian Nationals for Cyber Attacks Targeting Estonia's Key Ministries
EU sanctions three GRU officers for cyber attacks stealing classified data from Estonia’s ministries, compromising national ...
The Hacker News16h
PureCrypter Deploys Agent Tesla and New TorNet Backdoor in Ongoing Cyberattacks
Since July 2024, a phishing campaign in Poland and Germany has used PureCrypter to deploy TorNet via TOR, evading cloud ...
The Hacker News1d
Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More
Apple addresses a zero-day flaw (CVE-2025-24085) and fixes 9 vulnerabilities in iOS 18.3, macOS Sequoia 15.3, and more.
The Hacker News1d
GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs
"Using a maliciously crafted URL it's possible to cause the credential request coming from Git to be misinterpreted by Github ...