Nuacht

The Hacker News1 uair an chloig
Türkiye Hackers Exploited Output Messenger Zero-Day to Drop Golang Backdoors on Kurdish Servers
A Türkiye-affiliated threat actor exploited a zero-day security flaw in an Indian enterprise communication platform called ...
The Hacker News16 uair an chloig
ASUS Patches DriverHub RCE Flaws Exploitable via HTTP and Crafted .ini Files
"If you run AsusSetup.exe with the -s flag (DriverHub calls it using this to do a silent install), it will execute whatever ...
The Hacker News17 uair an chloig
⚡ Weekly Recap: Zero-Day Exploits, Developer Malware, IoT Botnets, and AI-Powered Scams
The attacks targeted IoT devices susceptible to known security flaws to deploy a malware called TheMoon. The development ...
The Hacker News22 uair an chloig
Fake AI Tools Used to Spread Noodlophile Malware, Targeting 62,000+ via Facebook Lures
"Instead of relying on traditional phishing or cracked software sites, they build convincing AI-themed platforms – often ...
The Hacker News23 uair an chloig
Securing Tier 0 – A History of Escalating Protection
The separation of high value, highly sensitive forests in Active Directory from other systems and assets is critically ...
The Hacker News2 lá
Google Pays $1.375 Billion to Texas Over Unauthorized Tracking and Biometric Data Collection
Google has agreed to pay the U.S. state of Texas nearly $1.4 billion to settle two lawsuits that accused the company of ...
The Hacker News2 lá
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
Malicious npm packages targeting Cursor macOS users stole credentials and disabled updates, impacting 3,200+ downloads.
The Hacker News3 lá
Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
"The spam message uses the Brazilian electronic invoice system, NF-e, as a lure to entice users into clicking hyperlinks and ...
The Hacker News1 lá
Germany Shuts Down eXch Over $1.9B Laundering, Seizes €34M in Crypto and 8TB of Data
Germany's Federal Criminal Police Office (aka Bundeskriminalamt or BKA) has seized the online infrastructure and shutdown linked to the eXch cryptocurrency exchange over allegations of money ...
The Hacker News3 lá
Beyond Vulnerability Management – Can You CVE What I CVE?
The current approach to vulnerability management is rooted in its name: focusing on "vulnerabilities" (as defined by CVE, ...
The Hacker News5 lá
Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT
Cisco fixes CVE-2025-20188, a 10.0 CVSS flaw tied to hardcoded JWT in wireless controllers, preventing root-level remote ...
The Hacker News3 lá
BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. - Dutch Operation
Dutch and U.S. law enforcement have dismantled a long-running criminal proxy botnet powered by over 7,000 infected IoT and ...