News

The Hacker News1h

New PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory Attacks

The starting point of the attack is a compressed archive that's delivered to victims via malvertising or search engine ...
The Hacker News3h

Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flaws

Zoom and Xerox patched critical flaws enabling privilege escalation and RCE, risking corporate network compromise.
The Hacker News5h

Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code

"An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in ...
The Hacker News5h

AI SOC 101: Key Capabilities Security Leaders Need to Know

An AI SOC brings together a range of capabilities that strengthen and scale the core functions of a security operations ...
The Hacker News8h

Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws

Microsoft fixed 111 vulnerabilities, including a Windows Kerberos zero-day enabling full AD compromise via BadSuccessor.
The Hacker News11h

Charon Ransomware Hits Middle East Sectors Using APT-Level Evasion Tactics

Charon ransomware targets Middle East sectors using APT-style evasion, causing faster, harder-to-recover encryption.
The Hacker News22h

Researchers Spot XZ Utils Backdoor in Dozens of Docker Hub Images, Fueling Supply Chain Risks

Researchers found 35 Docker Hub images, including Debian builds, still carrying the XZ Utils backdoor a year later, ...
The Hacker News7h

Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Survive

AI-driven deepfakes, bots, and synthetic identities overwhelm legacy defenses, making identity the key to stopping breaches.