The Hacker News1 小时
Lazarus Group Uses React-Based Admin Panel to Control Global Cyber Attacks
Lazarus Group’s Phantom Circuit hit 233 victims with trojanized software, using React and Node.js for control.
The Hacker News6 小时
AI in Cybersecurity: What's Effective and What's Not – Insights from 200 Experts
Join Ravid Circus, a seasoned pro in cybersecurity and AI, as we peel back the layers of AI in cybersecurity through a ...
The Hacker News7 小时
New SLAP & FLOP Attacks Expose Apple M-Series Chips to Speculative Execution Exploits
SLAP & FLOP attacks exploit Apple M-series speculative execution flaws, leaking emails, location data, and credit cards via ...
The Hacker News7 小时
Critical Cacti Security Flaw (CVE-2025-22604) Enables Remote Code Execution
CVE-2025-22604 in Cacti (CVSS 9.1) enables authenticated attackers to execute remote code. Upgrade to version 1.2.29 to ...
The Hacker News7 小时
How Interlock Ransomware Infects Healthcare Organizations
The Interlock ransomware group begins its attack with a strategic and highly deceptive method known as a Drive-by Compromise.
The Hacker News12 小时
UAC-0063 Expands Cyber Attacks to European Embassies Using Stolen Documents
UAC-0063 was first flagged by the Romanian cybersecurity company in May 2023 in connection with a campaign that targeted ...
The Hacker News12 小时
Zyxel CPE Devices Face Active Exploitation Due to Unpatched CVE-2024-40891 Vulnerability
Critical zero-day vulnerability CVE-2024-40891 in Zyxel CPE devices is under active attack, affecting 1,500+ devices.
The Hacker News12 小时
Broadcom Warns of High-Severity SQL Injection Flaw in VMware Avi Load Balancer
VMware Avi Load Balancer flaw (CVE-2025-22217, CVSS 8.6) enables unauthenticated SQL injection. No workarounds exist—Broadcom ...