Nuacht

The Hacker News4 uair an chloig
ASUS Patches DriverHub RCE Flaws Exploitable via HTTP and Crafted .ini Files
"If you run AsusSetup.exe with the -s flag (DriverHub calls it using this to do a silent install), it will execute whatever ...
The Hacker News5 uair an chloig
⚡ Weekly Recap: Zero-Day Exploits, Developer Malware, IoT Botnets, and AI-Powered Scams
The attacks targeted IoT devices susceptible to known security flaws to deploy a malware called TheMoon. The development ...
The Hacker News10 uair an chloig
Fake AI Tools Used to Spread Noodlophile Malware, Targeting 62,000+ via Facebook Lures
"Instead of relying on traditional phishing or cracked software sites, they build convincing AI-themed platforms – often ...
The Hacker News11 uair an chloig
Securing Tier 0 – A History of Escalating Protection
The separation of high value, highly sensitive forests in Active Directory from other systems and assets is critically ...
The Hacker News12 uair an chloig
OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities
OtterCookie v3 has been found to incorporate a new upload module to send files matching a predefined set of extensions to the ...
The Hacker News12 uair an chloig
Germany Shuts Down eXch Over $1.9B Laundering, Seizes €34M in Crypto and 8TB of Data
Germany's Federal Criminal Police Office (aka Bundeskriminalamt or BKA) has seized the online infrastructure and shutdown linked to the eXch cryptocurrency exchange over allegations of money ...
The Hacker News2 lá
Google Pays $1.375 Billion to Texas Over Unauthorized Tracking and Biometric Data Collection
Google has agreed to pay the U.S. state of Texas nearly $1.4 billion to settle two lawsuits that accused the company of ...
The Hacker News3 lá
BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. - Dutch Operation
Dutch and U.S. law enforcement have dismantled a long-running criminal proxy botnet powered by over 7,000 infected IoT and ...
The Hacker News3 lá
Beyond Vulnerability Management – Can You CVE What I CVE?
The current approach to vulnerability management is rooted in its name: focusing on "vulnerabilities" (as defined by CVE, ...
The Hacker News3 lá
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
China-based hackers exploited SAP flaw CVE-2025-31324 since April 29, impacting global industries via web shells.
The Hacker News4 lá
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization
The exploitation of CVE-2025-29824 also points to the trend of ransomware actors using zero-days to infiltrate targets. Last ...
The Hacker News3 lá
Russian Hackers Using ClickFix Fake CAPTCHA to Deploy New LOSTKEYS Malware
The Russia-linked threat actor known as COLDRIVER has been observed distributing a new malware called LOSTKEYS as part of an ...