High-severity CVE-2025-14847 allows unauthenticated attackers to read uninitialized heap memory in MongoDB due to a zlib ...
China-linked Evasive Panda used DNS poisoning to deliver the MgBot backdoor in targeted espionage attacks from 2022 to 2024.
ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories
Weekly roundup exploring how cyber threats, AI misuse, and digital deception are reshaping global security trends.
A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...
SEC files charges over a $14M crypto scam using fake AI investment tips, WhatsApp groups, and bogus trading platforms to ...
Stolen LastPass vaults from the 2022 breach enabled about $35M in crypto thefts through 2025, according to TRM Labs.
Italy’s antitrust authority fined Apple €98.6M for ATT rules that forced extra consent steps on third-party apps and harmed ...
A malicious npm package posing as a WhatsApp API intercepts messages, steals credentials, and links attacker devices after 56 ...
Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites | Read more hacking news on The Hacker News ...
Critical n8n flaw CVE-2025-68613 (CVSS 9.9) lets authenticated users run arbitrary code; versions 0.211.0–1.120.4 affected, ...
Trust Wallet says a security incident in its Chrome extension v2.68 caused about $7M in crypto losses and urges users to update to v2.69.
Discover how AI and automation strengthen defenses, streamline operations, and deliver measurable business impact. Hear from ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback