Hacking

Canary Exploit tool allows to find servers affected by Apache Parquet flawCanary Exploit tool allows to find servers affected by Apache Parquet flaw

Canary Exploit tool allows to find servers affected by Apache Parquet flaw

F5 Labs researchers released a PoC tool to find servers vulnerable to the Apache Parquet vulnerability CVE-2025-30065. A working proof-of-concept…

4 weeks ago
Unsophisticated cyber actors are targeting the U.S. Energy sectorUnsophisticated cyber actors are targeting the U.S. Energy sector

Unsophisticated cyber actors are targeting the U.S. Energy sector

CISA, FBI, EPA, and DoE warn of cyberattacks on the U.S. Energy sector carried out by unsophisticated cyber actors targeting…

4 weeks ago
U.S. CISA adds FreeType flaw to its Known Exploited Vulnerabilities catalogU.S. CISA adds FreeType flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds FreeType flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds FreeType flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure…

4 weeks ago
Samsung MagicINFO flaw exploited days after PoC exploit publicationSamsung MagicINFO flaw exploited days after PoC exploit publication

Samsung MagicINFO flaw exploited days after PoC exploit publication

Threat actors started exploiting a vulnerability in Samsung MagicINFO only days after a PoC exploit was published. Arctic Wolf researchers…

4 weeks ago
Experts warn of a second wave of attacks targeting SAP NetWeaver bug CVE-2025-31324<gwmw style="display:none;"></gwmw>Experts warn of a second wave of attacks targeting SAP NetWeaver bug CVE-2025-31324<gwmw style="display:none;"></gwmw>

Experts warn of a second wave of attacks targeting SAP NetWeaver bug CVE-2025-31324<gwmw style="display:none;"></gwmw>

Threat actors launch second wave of attacks on SAP NetWeaver, exploiting webshells from a recent zero-day vulnerability. In April, ReliaQuest…

4 weeks ago
U.S. CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalogU.S. CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Langflow flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and…

4 weeks ago
Google fixed actively exploited Android flaw CVE-2025-27363Google fixed actively exploited Android flaw CVE-2025-27363

Google fixed actively exploited Android flaw CVE-2025-27363

Google addressed 46 Android security vulnerabilities, including one issue that has been exploited in attacks in the wild. Google's monthly…

4 weeks ago
New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDRNew ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR

New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR

A new BYOI technique lets attackers bypass SentinelOne EDR, disable protection, and deploy Babuk ransomware by exploiting the agent upgrade…

4 weeks ago
Kelly Benefits December data breach impacted over 400,000 individualsKelly Benefits December data breach impacted over 400,000 individuals

Kelly Benefits December data breach impacted over 400,000 individuals

Kelly Benefits has determined that the impact of the recently disclosed data breach is much bigger than initially believed. Benefits…

4 weeks ago
A hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. govA hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. gov

A hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. gov

A hacker stole data from TeleMessage, exposing messages from its modified Signal, WhatsApp, and other apps sold to the U.S.…

4 weeks ago
Show more Posts
Show previous Posts