The Hacker News1h
Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks
Microsoft warns of 3,000+ publicly disclosed ASP.NET machine keys that enable ViewState code injection attacks, leading to ...
The Hacker News2h
India's RBI Introduces Exclusive "bank.in" Domain to Combat Digital Banking Fraud
RBI launches "bank.in" and "fin.in" domains to prevent digital fraud, with AFA enhancing online transaction security.
The Hacker News2h
AI-Powered Social Engineering: Reinvented Threats
AI-powered phishing and deepfake scams are accelerating cybercrime, cutting costs by 95% while increasing success rates.
The Hacker News8h
Hackers Exploiting SimpleHelp RMM Flaws for Persistent Access and Ransomware
Threat actors exploit SimpleHelp RMM flaws (CVE-2024-57726-28) for persistent network access, deploying Sliver and Cloudflare ...
The Hacker News23h
Ransomware Extortion Drops to $813.5M in 2024, Down from $1.25B in 2023
Ransomware extortion fell to $813.5M in 2024 from $1.25B in 2023, despite a 15% attack surge, with law enforcement disrupting ...
The Hacker News22h
Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking
Fake Chrome sites spread ValleyRAT via DLL hijacking, targeting finance and sales with keylogging and remote execution.
The Hacker News1d
Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc
Cisco has patched two critical ISE vulnerabilities (CVEs 2025-20124, 2025-20125) allowing remote command execution and ...
The Hacker News1d
The Evolving Role of PAM in Cybersecurity Leadership Agendas for 2025
PAM market to reach $42.96B by 2037. Learn how PAM boosts security, compliance, and efficiency amid evolving cyber threats.
The Hacker News1d
North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials
Kimsuky, a North Korean APT, uses LNK files and forceCopy malware to steal browser-stored credentials via phishing attacks, ...
The Hacker News2d
New Veeam Flaw Allows Arbitrary Code Execution via Man-in-the-Middle Attack
"A vulnerability within the Veeam Updater component that allows an attacker to utilize a Man-in-the-Middle attack to execute ...
The Hacker News1d
AsyncRAT Campaign Uses Python Payloads and TryCloudflare Tunnels for Stealth Attacks
Hackers deliver AsyncRAT using Dropbox URLs and TryCloudflare tunnels, exploiting legitimate services to bypass security ...
The Hacker News1d
Top 3 Ransomware Threats Active in 2025
LockBit, Lynx, and Virlock dominate 2025 ransomware threats, targeting businesses with double extortion, data breaches, and ...