The Hacker News5h
Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
Outdated BIOS firmware in Illumina iSeq 100 allows attackers to disable devices or install malware, threatening critical ...
The Hacker News7h
Farewell to the Fallen: The Cybersecurity Stars We Lost Last Year
Legacy MFA, antivirus, VPNs, and password managers fall to advanced phishing, AI-driven malware, and zero-trust solutions, ...
The Hacker News12h
Moxa Alerts Users to High-Severity Vulnerabilities in Cellular and Secure Routers
Two severe vulnerabilities (CVE-2024-9138, CVE-2024-9140) in Moxa routers risk privilege escalation and command execution.
The Hacker News15h
FireScam Android Malware Poses as Telegram Premium to Steal Data and Control Devices
FireScam malware disguises as Telegram Premium, exploiting permissions for data theft and persistent device control ...
The Hacker News1d
From $22M in Ransom to +100M Stolen Records: 2025's All-Star SaaS Threat Actors to Watch
SaaS threats soared in 2024, with 7,000 password attacks blocked per second, phishing up 58%, and $3.5 billion in losses.
The Hacker News3d
Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution
CVE-2024-43405 in Nuclei allows signature bypass, enabling arbitrary code execution. Update to version 3.3.7 for critical ...
The Hacker News4d
Apple to Pay Siri Users $20 Per Device in Settlement Over Accidental Siri Privacy Violations
Apple has agreed to pay $95 million to settle a proposed class action lawsuit that accused the iPhone maker of invading users ...
The Hacker News5d
Three Russian-German Nationals Charged with Espionage for Russian Secret Service
German prosecutors charged three Russian-German nationals for espionage and sabotage, targeting German-U.S. military ...
The Hacker News4d
Severe Security Flaws Patched in Microsoft Dynamics 365 and Power Apps Web API
Three patched Dynamics 365 and Power Apps vulnerabilities exposed sensitive data, highlighting risks of API flaws.
The Hacker News4d
Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT
Malicious npm package 'ethereumvulncontracthandler' delivers Quasar RAT to Windows systems, bypassing sandbox defenses, with ...
The Hacker News4d
New AI Jailbreak Method 'Bad Likert Judge' Boosts Attack Success Rates by Over 60%
New Likert-scale-based AI jailbreak technique boosts attack success rates by 60%, highlighting urgent safety challenges.
The Hacker News7d
Misconfigured Kubernetes RBAC in Azure Airflow Could Expose Entire Cluster to Exploitation
Cybersecurity researchers have uncovered three security weaknesses in Microsoft's Azure Data Factory Apache Airflow ...