The Hacker News47m
Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection
CVE-2024-52875, a critical RCE flaw in GFI KerioControl firewalls, allows HTTP response splitting and exploits over 23,800 ...
The Hacker News4h
Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure
Ivanti's CVE-2025-0282 flaw, exploited by China-linked actors, enables remote code execution. CISA demands urgent patching by ...
The Hacker News4h
E.U. Commission Fined for Transferring User Data to Meta in Violation of Privacy Laws
The court determined that a "sufficiently serious breach" was committed by transferring a German citizen's personal data, ...
The Hacker News4h
CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation
CISA lists critical flaws in Mitel MiCollab (CVE-2024-41713, CVE-2024-55550) and Oracle WebLogic (CVE-2020-2883).
The Hacker News6h
Neglected Domains Used in Malspam to Evade SPF and DMARC Security Protections
Neglected domains fuel malspam with spoofed emails, bypassing security checks and exploiting low-cost domains.
The Hacker News21h
Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques
"The NonEuclid remote access trojan (RAT), developed in C#, is a highly sophisticated malware offering unauthorised remote ...
The Hacker News21h
Top 5 Malware Threats to Prepare Against in 2025
Lumma, XWorm, and LockBit posed serious threats in 2024. Learn how ANY.RUN’s sandbox detects malware tactics, including ...
The Hacker News1d
Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks
Mirai botnet variant exploits CVE-2024-12856 in Four-Faith routers, enabling 100 Gbps DDoS attacks across five nations.
The Hacker News1d
FCC Launches 'Cyber Trust Mark' for IoT Devices to Certify Security Compliance
"IoT products can be susceptible to a range of security vulnerabilities," the U.S. Federal Communications Commission (FCC) ...
The Hacker News1d
Farewell to the Fallen: The Cybersecurity Stars We Lost Last Year
Legacy MFA, antivirus, VPNs, and password managers fall to advanced phishing, AI-driven malware, and zero-trust solutions, ...
The Hacker News1d
Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
Outdated BIOS firmware in Illumina iSeq 100 allows attackers to disable devices or install malware, threatening critical ...
The Hacker News2d
âš¡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan]
Stay ahead of the latest threats with our weekly cybersecurity updates. It’s quick, simple, and keeps you safe.