Firefox Patches 2 Zero-Days Exploited at Pwn2Own Berlin with $100K in Rewards
May 19, 2025Ravie LakshmananBrowser Security / Vulnerability Mozilla has released security updates to address two critical security flaws in its...
Read more →Category: TheHackerNews
Why CTEM is the Winning Bet for CISOs in 2025
Continuous Threat Exposure Management (CTEM) has moved from concept to cornerstone, solidifying its role as a strategic enabler for CISOs....
Read more →
New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors
May 16, 2025Ravie LakshmananUnited States Cybersecurity researchers are calling attention to a new botnet malware called HTTPBot that has been...
Read more →
Top 10 Best Practices for Effective Data Protection
Data is the lifeblood of productivity, and protecting sensitive data is more critical than ever. With cyber threats evolving rapidly...
Read more →
Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks
May 16, 2025Ravie LakshmananHardware Security / Vulnerability Researchers at ETH Zürich have discovered yet another security flaw that they say...
Read more →
Fileless Remcos RAT Delivered via LNK Files and MSHTA in PowerShell-Based Attacks
Cybersecurity researchers have shed light on a new malware campaign that makes use of a PowerShell-based shellcode loader to deploy...
Read more →
Learn a Smarter Way to Defend Modern Applications
May 16, 2025The Hacker NewsDevSecOps / Threat Detection Modern apps move fast—faster than most security teams can keep up. As...
Read more →
Meta to Train AI on E.U. User Data From May 27 Without Consent; Noyb Threatens Lawsuit
May 15, 2025Ravie LakshmananAI Training / Data Protection Austrian privacy non-profit noyb (none of your business) has sent Meta’s Irish...
Read more →
Coinbase Agents Bribed, Data of ~1% Users Leaked; $20M Extortion Attempt Fails
May 15, 2025Ravie LakshmananCryptocurrency / Threat Intelligence Cryptocurrency exchange Coinbase has disclosed that unknown cyber actors broke into its systems...
Read more →
Malicious npm Package Leverages Unicode Steganography, Google Calendar as C2 Dropper
May 15, 2025Ravie LakshmananMalware / Threat Intelligence Cybersecurity researchers have discovered a malicious package named “os-info-checker-es6” that disguises itself as...
Read more →
Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers
A Russia-linked threat actor has been attributed to a cyber espionage operation targeting webmail servers such as Roundcube, Horde, MDaemon,...
Read more →
Pen Testing for Compliance Only? It’s Time to Change Your Approach
May 15, 2025The Hacker NewsCompliance / Penetration Testing Imagine this: Your organization completed its annual penetration test in January, earning...
Read more →