News

The Hacker News2h
HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass
Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce ...
The Hacker News16h
Fake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack
Fake Gitcode and DocuSign sites are tricking users into running PowerShell scripts that install NetSupport RAT.
The Hacker News22h
Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets
A growing number of malicious campaigns have leveraged a recently discovered Android banking trojan called Crocodilus to ...
The Hacker News22h
New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch
Google fixed CVE-2025-5419 in Chrome after detecting active exploitation, affecting all platforms using V8 engine.
The Hacker News22h
Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues
Google Chrome to Distrust Chunghwa and Netlock TLS Certificate Authorities Over Repeated Compliance Failures and Behavioral ...
The Hacker News18h
Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code
Then a couple of weeks ago, ESET noted that APT28 had leveraged cross-site scripting (XSS) vulnerabilities in various webmail servers such as Roundcube, Horde, MDaemon, and Zimbra to harvest ...
The Hacker News16m
Solving the Enterprise Security Challenge: How to Validate Across Complex Networks
With thousands of endpoints, cloud instances, remote users, and third-party integrations, securing the enterprise has become a massive target. Each change in the IT environment - whether driven by ...