The Hacker News25m
Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection
CVE-2024-52875, a critical RCE flaw in GFI KerioControl firewalls, allows HTTP response splitting and exploits over 23,800 ...
The Hacker News3h
E.U. Commission Fined for Transferring User Data to Meta in Violation of Privacy Laws
The court determined that a "sufficiently serious breach" was committed by transferring a German citizen's personal data, ...
The Hacker News4h
Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure
Ivanti's CVE-2025-0282 flaw, exploited by China-linked actors, enables remote code execution. CISA demands urgent patching by ...
The Hacker News4h
CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation
CISA lists critical flaws in Mitel MiCollab (CVE-2024-41713, CVE-2024-55550) and Oracle WebLogic (CVE-2020-2883).
The Hacker News6h
Neglected Domains Used in Malspam to Evade SPF and DMARC Security Protections
Neglected domains fuel malspam with spoofed emails, bypassing security checks and exploiting low-cost domains.
The Hacker News20h
Top 5 Malware Threats to Prepare Against in 2025
Lumma, XWorm, and LockBit posed serious threats in 2024. Learn how ANY.RUN’s sandbox detects malware tactics, including ...
The Hacker News21h
Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques
"The NonEuclid remote access trojan (RAT), developed in C#, is a highly sophisticated malware offering unauthorised remote ...