Forwarded from The Hacker News
🚨 Warning: A new high-severity Google Chrome flaw is being actively exploited in the wild.
CVE-2025-4664 allows attackers to steal sensitive data like account credentials via crafted HTML + image traps.
It affects Chrome < 136.0.7103.113 — and likely other Chromium-based browsers.
🔗 Details: https://thehackernews.com/2025/05/new-chrome-vulnerability-enables-cross.html
CVE-2025-4664 allows attackers to steal sensitive data like account credentials via crafted HTML + image traps.
It affects Chrome < 136.0.7103.113 — and likely other Chromium-based browsers.
🔗 Details: https://thehackernews.com/2025/05/new-chrome-vulnerability-enables-cross.html
Forwarded from The Hacker News
🚨 One email. One click. Full inbox compromise.
APT28 is back with Operation RoundPress, exploiting zero-days in MDaemon, Roundcube, Zimbra & Horde to steal emails from govs, defense orgs & academics across Ukraine, Bulgaria, Greece & more.
🔗 Read: https://thehackernews.com/2025/05/russia-linked-apt28-exploited-mdaemon.html
APT28 is back with Operation RoundPress, exploiting zero-days in MDaemon, Roundcube, Zimbra & Horde to steal emails from govs, defense orgs & academics across Ukraine, Bulgaria, Greece & more.
🔗 Read: https://thehackernews.com/2025/05/russia-linked-apt28-exploited-mdaemon.html
Forwarded from The Hacker News
🚨 2,000+ devs downloaded this npm package... and it was hiding malware
A seemingly harmless utility used Google Calendar as a stealth command link.
—Unicode tricks
—Multi-stage payloads
—Real downloads
—The kicker? It’s still live
Read here: https://thehackernews.com/2025/05/malicious-npm-package-leverages-unicode.html
A seemingly harmless utility used Google Calendar as a stealth command link.
—Unicode tricks
—Multi-stage payloads
—Real downloads
—The kicker? It’s still live
Read here: https://thehackernews.com/2025/05/malicious-npm-package-leverages-unicode.html
Forwarded from The Hacker News
🔥 Cybercriminals are now using Microsoft’s own Quick Assist tool to deploy ransomware like Black Basta. And with Ransomware-as-a-Service, anyone can launch an attack.
No BCDR? You’re gambling your business.
Learn 5 must-have recovery moves now → https://thehackernews.com/2025/05/top-5-bcdr-capabilities-for-ransomware-defense.html
No BCDR? You’re gambling your business.
Learn 5 must-have recovery moves now → https://thehackernews.com/2025/05/top-5-bcdr-capabilities-for-ransomware-defense.html
Forwarded from The Hacker News
👀 Your last pen test passed. So why was there still a breach?
Compliance checks a box. Attackers exploit what happens next. Verizon’s 2025 report shows a 34% spike in exploited vulnerabilities — most after audits.
🔁 It’s time to move beyond point-in-time testing.
Only continuous pen testing + EASM reveals what attackers find first.
👉 See what your strategy might be missing: https://thehackernews.com/2025/05/pen-testing-for-compliance-only-its.html
Compliance checks a box. Attackers exploit what happens next. Verizon’s 2025 report shows a 34% spike in exploited vulnerabilities — most after audits.
🔁 It’s time to move beyond point-in-time testing.
Only continuous pen testing + EASM reveals what attackers find first.
👉 See what your strategy might be missing: https://thehackernews.com/2025/05/pen-testing-for-compliance-only-its.html
Forwarded from The Hacker News
🚨 Coinbase insider breach exposed. Hackers bribed support agents to steal user data—then tried to extort $20M.
🧠 No crypto lost, but names, emails, and IDs were leaked.
🛡️ Coinbase is reimbursing victims + offering a $20M reward.
🔗 Full story → https://thehackernews.com/2025/05/coinbase-agents-bribed-data-of-1-users.html
🧠 No crypto lost, but names, emails, and IDs were leaked.
🛡️ Coinbase is reimbursing victims + offering a $20M reward.
🔗 Full story → https://thehackernews.com/2025/05/coinbase-agents-bribed-data-of-1-users.html
Forwarded from The Hacker News
👀 Meta vs. Europe—Round 2
Starting May 27, Meta plans to train its AI using Facebook & Instagram user data across the E.U.—without asking for consent.
Privacy watchdog noyb says it’s illegal. A class action may be coming.
Full story: https://thehackernews.com/2025/05/meta-to-train-ai-on-eu-user-data-from.html
Starting May 27, Meta plans to train its AI using Facebook & Instagram user data across the E.U.—without asking for consent.
Privacy watchdog noyb says it’s illegal. A class action may be coming.
Full story: https://thehackernews.com/2025/05/meta-to-train-ai-on-eu-user-data-from.html
Forwarded from The Hacker News
🚫 Your firewall isn't broken—it's just outdated.
AI-powered attacks are faster than ever. Still exposing your network with public IPs? You're playing defense with a blindfold.
Zscaler's Zero Trust model flips the script—no public IPs, no easy targets. It's not magic. It's strategy.
👀 The most secure network is the one they can't see.
🔎 Discover how it works → https://thehackernews.com/expert-insights/2025/05/eliminating-public-ips-case-for-zero.html
AI-powered attacks are faster than ever. Still exposing your network with public IPs? You're playing defense with a blindfold.
Zscaler's Zero Trust model flips the script—no public IPs, no easy targets. It's not magic. It's strategy.
👀 The most secure network is the one they can't see.
🔎 Discover how it works → https://thehackernews.com/expert-insights/2025/05/eliminating-public-ips-case-for-zero.html
Forwarded from The Hacker News
💻 Spectre Isn’t Dead. It’s Mutating! New CPU flaw hits ALL modern Intel chips.
🛠 Researchers at ETH Zurich and VUSec uncovered Spectre-style Intel CPU flaws (CVE-2024-45332, CVE-2024-28956, CVE-2025-24495) that leak memory across users, guests, and hosts—at rates up to 17KB/sec.
Read details → https://thehackernews.com/2025/05/researchers-expose-new-intel-cpu-flaws.html
Patches are out. But is this just another Band-Aid?
🛠 Researchers at ETH Zurich and VUSec uncovered Spectre-style Intel CPU flaws (CVE-2024-45332, CVE-2024-28956, CVE-2025-24495) that leak memory across users, guests, and hosts—at rates up to 17KB/sec.
Read details → https://thehackernews.com/2025/05/researchers-expose-new-intel-cpu-flaws.html
Patches are out. But is this just another Band-Aid?
No deleted account found from
53 scanned users from this group 🚫👻Forwarded from Gizchina.com
SanDisk Unveils the Fastest PCIe Gen 5 SSD to Date
https://www.gizchina.com/2025/05/16/sandisk-unveils-the-fastest-pcie-gen-5-ssd-to-date/
https://www.gizchina.com/2025/05/16/sandisk-unveils-the-fastest-pcie-gen-5-ssd-to-date/
Forwarded from It's FOSS
Deal alert! The Linux Foundation's training courses are on discount. 📣
https://news.itsfoss.com/linux-foundation-deal-may-2025/
https://news.itsfoss.com/linux-foundation-deal-may-2025/
It's FOSS News
Linux Foundation's Massive Kubernetes Training Bundles on Discount
An excellent opportunity to purchase discounted courses and certifications from The Linux Foundation.
Forwarded from It's FOSS
Microsoft finally did something about the Linux dual-boot issue.
https://news.itsfoss.com/microsoft-fixes-linux-dual-boot/
https://news.itsfoss.com/microsoft-fixes-linux-dual-boot/
It's FOSS
9 Months Later, Microsoft Finally Fixes Linux Dual-Booting Bug
A sneaky move by the tech giant but at least we have some moves in the right direction.
Forwarded from The Hacker News
🚨 A new Windows-based botnet—HTTPBot—is quietly choking login and payment systems across China’s gaming and tech sectors.
🔥 Over 200 targeted attacks since April 2025
🧠 Mimics real users with Chrome, cookies & HTTP/2
Learn more about this: https://thehackernews.com/2025/05/new-httpbot-botnet-launches-200.html
🔥 Over 200 targeted attacks since April 2025
🧠 Mimics real users with Chrome, cookies & HTTP/2
Learn more about this: https://thehackernews.com/2025/05/new-httpbot-botnet-launches-200.html
Forwarded from The Hacker News
🔒 What if your most sensitive data is already exposed—and no one knows yet?
AI-powered DLP, zero trust, browser isolation, and cloud posture control are reshaping data defense.
Learn 10 must-do strategies now → https://thehackernews.com/2025/05/top-10-best-practices-for-effective.html
AI-powered DLP, zero trust, browser isolation, and cloud posture control are reshaping data defense.
Learn 10 must-do strategies now → https://thehackernews.com/2025/05/top-10-best-practices-for-effective.html
Forwarded from Hacker News
Forwarded from Hacker News
Arduino Blog
Arduino is at work to make bio-based PCBs! | Arduino Blog
April 22nd is Earth Day – a powerful reminder of our shared responsibility to preserve the planet for future generations. While the call for climate action grows louder, Arduino is committed to making sustainability an ongoing priority through concrete projects…
Forwarded from Hacker News