News

The Hacker News5h
Ransomware Gangs Use Skitnet Malware for Stealthy Data Theft and Remote Access
Skitnet, also called Bossnet, is a multi-stage malware developed by a threat actor tracked by the company under the name ...
The Hacker News8h
Breach Fatalism is Over: Why Identity Threat Prevention Is the Future of Cybersecurity
ITP enforces real-time policies using identity and security signals, adding preventive protection between users and apps.
The Hacker News9h
Firefox Patches 2 Zero-Days Exploited at Pwn2Own Berlin with $100K in Rewards
Edouard Bochin and Tao Yan from Palo Alto Networks have been credited with finding and reporting CVE-2025-4918. The discovery ...
The Hacker News15h
Living Off the Land: What We Learned from 700,000 Security Incidents
While emerging risks like AI-generated malware capture headlines, the reality of today's threat landscape is more ...
The Hacker News15h
Cover Your SaaS: Why SaaS Data Protection is the Foundation of Modern Business
Cloud-first and inherently scalable, SaaS-based platforms can deliver limitless elastic scalability that effortlessly matches ...
The Hacker News3d
New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors
HTTPBot, first spotted in the wild in August 2024, gets its name from the use of HTTP protocols to launch distributed ...
The Hacker News3d
Top 10 Best Practices for Effective Data Protection
AI classification, zero trust, and centralized DLP drive stronger data protection and compliance in dynamic environments.
The Hacker News3d
Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks
The hardware exploits, tracked as CVE-2024-28956 and CVE-2025-24495, can be used against Intel CPUs to leak kernel memory at ...
The Hacker News3d
Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers
A Russia-linked threat actor has been attributed to a cyber espionage operation targeting webmail servers such as Roundcube, ...
The Hacker News3d
Samsung Patches CVE-2025-4632 Used to Deploy Mirai Botnet via MagicINFO 9 Exploit
It's worth noting that CVE-2025-4632 is a patch bypass for CVE-2024-7399, another path traversal flaw in the same product ...
The Hacker News3d
Fortinet Patches CVE-2025-32756 Zero-Day RCE Flaw Exploited in FortiVoice Systems
Fortinet patched CVE-2025-32756, a zero-day flaw exploited in FortiVoice systems, risking remote code execution.
The Hacker News3d
Fileless Remcos RAT Delivered via LNK Files and MSHTA in PowerShell-Based Attacks
Remcos RAT deployed via fileless PowerShell attacks using LNK files and MSHTA.exe, evades disk-based defenses.