The Hacker News3h
NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta's Lawsuit
NSO Group exploited WhatsApp to install Pegasus spyware even after Meta sued, controlling operations themselves, not clients, ...
The Hacker News3h
Urgent: Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites
Critical vulnerability (CVE-2024-10924) in Really Simple Security plugin allows attackers admin access to WordPress sites.
The Hacker News2d
PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released
Palo Alto Networks confirms active exploitation of a critical zero-day in PAN-OS firewalls; users urged to secure interfaces ...
The Hacker News2d
Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials
BrazenBamboo exploits an unpatched FortiClient flaw to steal VPN credentials using DEEPDATA malware. Fortinet users advised ...
The Hacker News2d
Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations
WezRat is assessed to be the work of Cotton Sandstorm, an Iranian hacking group that's better known under the cover names ...
The Hacker News2d
How AI Is Transforming IAM and Identity Security
AI revolutionizes IAM by enabling real-time monitoring, anomaly detection, and adaptive governance for better security.
The Hacker News3d
CISA Flags Two Actively Exploited Palo Alto Flaws; New RCE Attack Confirmed
Palo Alto Networks addressed these shortcomings as part of security updates released on October 9, 2024. The company has ...
The Hacker News3d
High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables
Cybersecurity researchers have disclosed a high-severity security flaw in the PostgreSQL open-source database system that ...
The Hacker News3d
Bitfinex Hacker Sentenced to 5 Years, Guilty of Laundering $10.5 Billion in Bitcoin
Ilya Lichtenstein, who pleaded guilty to the 2016 hack of cryptocurrency stock exchange Bitfinex, has been sentenced to five ...
The Hacker News3d
Experts Uncover 70,000 Hijacked Domains in Widespread 'Sitting Ducks' Attack Scheme
Cybercriminals exploit 'Sitting Ducks' attacks, hijacking thousands of domains for phishing and fraud, Infoblox reports.
The Hacker News3d
Google Warns of Rising Cloaking Scams, AI-Driven Fraud, and Crypto Schemes
Google exposes cloaking scams targeting users with fake sites and AI-driven fraud, bolstering defenses with real-time scam ...
The Hacker News3d
An Agent's Identity: Is Your Authentication AI-Proof?
AI agents challenge access control. Discover why new authentication frameworks are essential for secure, dynamic agent use ...