Forwarded from It's FOSS
YouTube
Give Your Linux Terminal A Stunning Makeover
✨ Integrate ANY.RUN solutions into your company:
https://any.run/demo?utm_source=youtube_its_foss&utm_medium=video&utm_campaign=ad_insertion&utm_content=demo&utm_term=070525
Sign up for ANY.RUN for free by providing your business email:
https://app.…
https://any.run/demo?utm_source=youtube_its_foss&utm_medium=video&utm_campaign=ad_insertion&utm_content=demo&utm_term=070525
Sign up for ANY.RUN for free by providing your business email:
https://app.…
Forwarded from The Hacker News
🚨 Update: The latest version of Samsung MagicINFO 9 Server is being actively exploited—despite a patch issued in Aug 2024.
🔍 Researchers at Huntress say the flaw is still vulnerable to attack via a public PoC.
🔗 Read: https://thehackernews.com/2025/05/hackers-exploit-samsung-magicinfo.html
🔍 Researchers at Huntress say the flaw is still vulnerable to attack via a public PoC.
🔗 Read: https://thehackernews.com/2025/05/hackers-exploit-samsung-magicinfo.html
Forwarded from The Hacker News
🛑 New Cisco flaw scores a perfect 10.0 CVSS.
A hardcoded token. Root access. No login needed.
If you run Catalyst 9800 wireless controllers, you’ll want to check this fast.
👉 Read more about CVE-2025-20188 here: https://thehackernews.com/2025/05/cisco-patches-cve-2025-20188-100-cvss.html
A hardcoded token. Root access. No login needed.
If you run Catalyst 9800 wireless controllers, you’ll want to check this fast.
👉 Read more about CVE-2025-20188 here: https://thehackernews.com/2025/05/cisco-patches-cve-2025-20188-100-cvss.html
Forwarded from The Hacker News
🛠️ Microsoft hit 1,360 new vulnerabilities in 2024 — a record high. But here’s the twist—critical flaws are at a decade low.
So why are security leaders still on edge? Legacy code, AI risks, unstable patches… and a looming October 2025 deadline.
💥 The real threat isn’t always the loudest one.
Get the full story in the 2025 Microsoft Vulnerabilities Report: https://thehackernews.com/expert-insights/2025/05/dissecting-2025-microsoft.html
So why are security leaders still on edge? Legacy code, AI risks, unstable patches… and a looming October 2025 deadline.
💥 The real threat isn’t always the loudest one.
Get the full story in the 2025 Microsoft Vulnerabilities Report: https://thehackernews.com/expert-insights/2025/05/dissecting-2025-microsoft.html
Forwarded from The Hacker News
⚠️"I’m not a robot" just became dangerous.
A Russia-linked group is using fake CAPTCHAs and PowerShell tricks to quietly deploy a new espionage tool—LOSTKEYS.
Targets? The usual... and some surprising ones.
Read full story → https://thehackernews.com/2025/05/russian-hackers-using-clickfix-fake.html
A Russia-linked group is using fake CAPTCHAs and PowerShell tricks to quietly deploy a new espionage tool—LOSTKEYS.
Targets? The usual... and some surprising ones.
Read full story → https://thehackernews.com/2025/05/russian-hackers-using-clickfix-fake.html
Forwarded from The Hacker News
🚨 China-linked hackers hit Japan & Taiwan!
Govt agencies were targeted with ROAMINGMOUSE, a stealthy Excel-based malware dropper delivering an upgraded ANEL backdoor.
It starts with a real OneDrive link. Ends with deep system access.
But there’s more under the surface...
🔗 See how the attack works → https://thehackernews.com/2025/05/mirrorface-targets-japan-and-taiwan.html
Govt agencies were targeted with ROAMINGMOUSE, a stealthy Excel-based malware dropper delivering an upgraded ANEL backdoor.
It starts with a real OneDrive link. Ends with deep system access.
But there’s more under the surface...
🔗 See how the attack works → https://thehackernews.com/2025/05/mirrorface-targets-japan-and-taiwan.html
Forwarded from The Hacker News
🔐 Learn from industry experts and gain hands-on experience with integrated cybersecurity strategies, policies, and safeguards.
Don’t miss this event → https://thn.news/gc-cyber-risk-fb
Don’t miss this event → https://thn.news/gc-cyber-risk-fb
Forwarded from The Hacker News
🚨 AI is only as secure as the data it relies on.
As generative AI adoption grows, one question matters most:
Can you trust your data?
Sentra Security’s latest blog breaks down why visibility & control are key to safe, reliable AI.
Read more 👉 https://thn.news/ai-secure-data-x
As generative AI adoption grows, one question matters most:
Can you trust your data?
Sentra Security’s latest blog breaks down why visibility & control are key to safe, reliable AI.
Read more 👉 https://thn.news/ai-secure-data-x
Forwarded from The Hacker News
🚨 Qilin Ransomware Surges to #1
A stealthy tool called NETXLOADER is fueling Qilin’s explosive growth—45 victims in April alone, across sectors like healthcare, finance, and tech.
Find details here — https://thehackernews.com/2025/05/qilin-leads-april-2025-ransomware-spike.html
A stealthy tool called NETXLOADER is fueling Qilin’s explosive growth—45 victims in April alone, across sectors like healthcare, finance, and tech.
Find details here — https://thehackernews.com/2025/05/qilin-leads-april-2025-ransomware-spike.html
Forwarded from The Hacker News
⚠️ Another one? A SonicWall bug from 2021 just came back—and might’ve been exploited.
Now, 3 new flaws in SMA 100 appliances open the door to root-level access via VPN.
Don’t wait for PoC exploit | Update now → v10.2.1.15-81sv
🔗 Details here: https://thehackernews.com/2025/05/sonicwall-patches-3-flaws-in-sma-100.html
Now, 3 new flaws in SMA 100 appliances open the door to root-level access via VPN.
Don’t wait for PoC exploit | Update now → v10.2.1.15-81sv
🔗 Details here: https://thehackernews.com/2025/05/sonicwall-patches-3-flaws-in-sma-100.html
From October 11, 2010
https://sociable.co/web/html5-a-threat-to-privacy/
Is HTML5 a threat to privacy?
HTML5 allows website owners to create custom cookies on visitor’s machines that can store vast amount of a user’s browsing history.
Unlike previous cookies, which have limited uses and often expire after a short period of time, these HTML5 cookies can be stored on user’s machines for months, during which time they can collect more data about individual visitors. HTML 5 cookies are also capable of storing images, videos, video, text and location data.
https://sociable.co/web/html5-a-threat-to-privacy/
Is HTML5 a threat to privacy?
HTML5 allows website owners to create custom cookies on visitor’s machines that can store vast amount of a user’s browsing history.
Unlike previous cookies, which have limited uses and often expire after a short period of time, these HTML5 cookies can be stored on user’s machines for months, during which time they can collect more data about individual visitors. HTML 5 cookies are also capable of storing images, videos, video, text and location data.
Security firms and W3C are concerned that hackers will be able to access this personal information potentially giving them access to email and social networking data.
Concerns for users’ privacy are not just academic, in a test of the vulnerability of HTML 5 Samy Kamkar, a Californian programmer (@samykamkar), created a HTML5 cookie capable of tracking a user’s online activities. Called ‘evercookie’ Kamkar cookie can be downloaded without the users knowledge and, according to security experts is “not easily deleted.” His website is here http://samy.pl/ if you are brave enough to visit it.
While Kamkar’s cookie was developed to prove that such security holes exist there are fears that it could be used for more malicious reasons. He has made his code available to the public.