site:thehackernews.com

News

DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks

Earlier this month, Google-owned Mandiant also revealed that another security flaw in ICS (CVE-2025-22457) has been ...

New Critical SAP NetWeaver Flaw Exploited to Drop Web Shell, Brute Ratel Framework

"SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing an unauthenticated ...

The Hacker News14h

Why NHIs Are Security's Most Dangerous Blind Spot

Non-Human Identities, for the most part, authenticate using secrets: API keys, tokens, certificates, and other credentials ...

The Hacker News14h

Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

Cybersecurity researchers have disclosed three security flaws in the Rack Ruby web server interface that, if successfully ...

The Hacker News11h

DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack

"In 2023, UNC3782 conducted phishing operations against TRON users and transferred more than $137 million USD worth of assets in a single day," the company noted. "UNC3782 launched a campaign in 2024 ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results