The Hacker News6 小时
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [27 January]
From AI-powered threats to critical vulnerabilities in healthcare tech, this week’s recap dives deep into the challenges ...
The Hacker News5 小时
GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs
"Using a maliciously crafted URL it's possible to cause the credential request coming from Git to be misinterpreted by Github ...
The Hacker News12 小时
MintsLoader Delivers StealC Malware and BOINC in Targeted Cyber Attacks
Threat hunters have detailed an ongoing campaign that leverages a malware loader called MintsLoader to distribute secondary ...
The Hacker News11 小时
GamaCopy Mimics Gamaredon Tactics in Cyber Espionage Targeting Russian Entities
GamaCopy mimics Gamaredon, using military lures to deliver UltraVNC as "OneDrivers.exe" in Russian spear-phishing.
The Hacker News8 小时
Do We Really Need The OWASP NHI Top 10?
While crucial, the existing OWASP Top 10 lists don't properly address the unique challenges NHIs present. Being the critical ...
The Hacker News11 小时
Combat Threats to Technical Projects: 3 Hacks for Soft Skills
A study conducted by Harvard University, the Carnegie Foundation, and Stanford Research Center found that 85% of job success ...
The Hacker News1 天
Meta's Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks
"Affected versions of meta-llama are vulnerable to deserialization of untrusted data, meaning that an attacker can execute ...
The Hacker News3 天
Android's New Identity Check Feature Locks Device Settings Outside Trusted Locations
Google's Identity Check locks sensitive Android settings behind biometrics, enhancing security outside trusted locations.
The Hacker News2 天
CISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities List
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday placed a now-patched security flaw impacting the ...
The Hacker News4 天
Cisco Fixes Critical Privilege Escalation Flaw in Meeting Management (CVSS 9.9)
A third vulnerability patched by Cisco is CVE-2025-20128 (CVSS score: 5.3), an integer underflow bug impacting the Object ...
The Hacker News3 天
2025 State of SaaS Backup and Recovery Report
This article shares critical findings from the 2025 State of SaaS Backup and Recovery Report, which gathered data from over 3 ...
The Hacker News5 天
Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products
"Customers are strongly advised to apply the January 2025 Critical Patch Update for Oracle Agile PLM Framework as it includes ...