Fortinet warns attackers used symlink exploits to retain access post-patch, prompting urgent FortiOS updates and SSL-VPN ...

Palo Alto Networks has revealed that it's observing brute-force login attempts against PAN-OS GlobalProtect gateways, days ...

A critical OttoKit plugin flaw CVE-2025-3102 exploited within hours lets attackers create admin accounts unchecked.

SpyNote malware disguised as Chrome installs hidden APKs via fake Play Store pages, stealing sensitive Android data.

Lovable AI scored 1.8 on VibeScamming tests, enabling full scam creation with minimal guardrails, risking mass phishing abuse ...

Incomplete fix for CVE-2024-0132 in NVIDIA Toolkit leaves Linux Docker hosts vulnerable to container escapes and DoS attacks.

Malicious npm package pdf-to-office trojanizes Atomic Wallet, Exodus apps to steal crypto funds, persisting after deletion.

Cybersecurity researchers have disclosed details of an artificial intelligence (AI) powered platform called AkiraBot that's ...

PlayPraetor expands to 16,000+ URLs with five new Android malware variants, posing global threats to financial sectors.

CVE-2025-29824 exploited via PipeMagic malware escalated SYSTEM privileges, leading to targeted ransomware attacks.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

Gamaredon breached a Western military mission on Feb 26, 2025, using upgraded GammaSteel malware and new obfuscation tactics.