News

The Hacker News9h
Beyond Vulnerability Management – Can You CVE What I CVE?
The current approach to vulnerability management is rooted in its name: focusing on "vulnerabilities" (as defined by CVE, ...
The Hacker News10h
OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities
OtterCookie v3 has been found to incorporate a new upload module to send files matching a predefined set of extensions to the ...
The Hacker News19h
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
China-based hackers exploited SAP flaw CVE-2025-31324 since April 29, impacting global industries via web shells.
The Hacker News15h
Deploying AI Agents? Learn to Secure Them Before Hackers Strike Your Business
AI agents are changing the way businesses work. They can answer questions, automate tasks, and create better user experiences ...
The Hacker News16h
Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
Google on Thursday announced it's rolling out new artificial intelligence (AI)-powered countermeasures to combat scams across ...
The Hacker News22h
Qilin Ransomware Ranked Highest in April 2025 with 72 Data Leak Disclosures
Recent data shared by Group-IB shows that disclosures on Qilin's data leak site have more than doubled since February 2025, ...
The Hacker News15h
Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
"The spam message uses the Brazilian electronic invoice system, NF-e, as a lure to entice users into clicking hyperlinks and ...
The Hacker News10h
BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. - Dutch Operation
Dutch and U.S. law enforcement have dismantled a long-running criminal proxy botnet powered by over 7,000 infected IoT and ...
The Hacker News15h
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
Malicious npm packages targeting Cursor macOS users stole credentials and disabled updates, impacting 3,200+ downloads.
The Hacker News1d
SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root
CVE-2025-32819 (CVSS score: 8.8) - A vulnerability in SMA100 allows a remote authenticated attacker with SSL-VPN user ...
The Hacker News1d
MirrorFace Targets Japan and Taiwan with ROAMINGMOUSE and Upgraded ANEL Malware
MirrorFace deployed ROAMINGMOUSE and updated ANEL malware in March 2025 to target Japan and Taiwan's government systems ...
The Hacker News1d
Security Tools Alone Don't Protect You — Control Effectiveness Does
Security has never been about simply having the right tools. It is about understanding whether those tools are ready for the ...