The Hacker News

PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks

PhantomCore exploited three TrueConf flaws since September 2025, enabling remote access and lateral movement across Russian ...
The Hacker News

Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202

CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.
Security Boulevard

500,000 Vulnerabilities, 14 That Matter: How Exploit Chain Analysis Cuts Through the Noise

When 500,000 Findings Hide 14 Real Threats Modern enterprises ingest vulnerability data from dozens of sources: endpoint ...

China’s DeepSeek V4 And Qwen Reshape The Open-Source AI Race

China's DeepSeek Cuts AI Prices Again With New V4 Model A Year After Rattling Global AI Markets. The AI Price War Reignites A ...

New Mirai campaign exploits RCE flaw in EoL D-Link routers

A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability ...
SecurityWeek

OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years

An OpenSSH vulnerability introduced 15 years ago could allow attackers to obtain full root shell access to vulnerable servers ...
WGAL on MSN

'Verify you're human' | How to spot the fake CAPTCHA hack

A new online CAPTCHA scam is quietly stealing personal information by tricking users into installing malware through fake ...

Threat actor uses Microsoft Teams to deploy new “Snow” malware

A threat group tracked as UNC6692 uses social engineering to deploy a new, custom malware suite named 'Snow' which includes a ...
SecurityWeek

Incomplete Windows Patch Opens Door to Zero-Click Attacks

Incomplete patch for a Windows SmartScreen and Windows Shell security prompts bypass created a new bug enabling zero-click ...

CleanStart Production Containers Now Run Shell-Less and Read-Only Without Changing a Single Line of Developer Code

New clnimg-init binary automates the transition to hardened production runtimes, allowing developers to keep their existing Dockerfiles, pipelines, and workflows intact while security teams get ...

State committee passes proposal to raise billions from multinational companies

Opponents say California would tax income companies earned in other countries and already paid taxes on abroad.

The great energy pivot: US oil and Chinese solar are the winners in Trump’s war on Iran

Exposure of world’s reliance on Middle East supplies accelerates global shift towards new energy superpowers ...