The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a second security flaw impacting BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) products to the ...

This week in cybersecurity: zero-day exploits, advanced malware, and the latest hacking tricks you need to know about.

CVE-2024-50603 in Aviatrix Controller enables remote code execution, cryptomining, and backdoor attacks. Patch now.

Malicious JavaScript in WordPress checkout pages steals payment data, hides in wp_options, and exfiltrates encrypted details.

Hijacked 4,000+ backdoors via expired domains for $20, exposing government, academic, and private systems globally.

In 2024, ransomware attacks targeting VMware ESXi servers reached alarming levels, with the average ransom demand ...

The U.S. Department of Justice (DoJ) on Friday indicted three Russian nationals for their alleged involvement in operating ...

The guide— " Taking the Pain Out of Cybersecurity Reporting " —walks you through how to transform raw data into compelling ...

AI-driven ransomware group FunkSec targets 85 victims globally, blending hacktivism and cybercrime with low-cost ransoms.

The Hacker News is the most trusted and popular cybersecurity publication for information security professionals seeking ...

Lumma, XWorm, and LockBit posed serious threats in 2024. Learn how ANY.RUN’s sandbox detects malware tactics, including ...

Palo Alto Networks patches severe Expedition vulnerabilities, including SQL injection (CVE-2025-0103, CVSS 7.8), exposing ...