资讯

The Hacker News13 分钟
Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals
Pay2Key.I2P ransomware resurfaces in 2025, offering 80% profit to affiliates targeting Israel and the U.S., netting $4 ...
The Hacker News6 小时
CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises
CISA added Citrix NetScaler's CVE-2025-5777 to its KEV catalog as active exploits emerge worldwide. Immediate patching ...
The Hacker News17 小时
Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads
A critical vulnerability in mcp-remote (CVE-2025-6514) allows remote code execution, affecting 437,000+ users.
The Hacker News22 小时
AMD Warns of New Transient Scheduler Attacks Impacting a Wide Range of CPUs
AMD reveals new Transient Scheduler vulnerabilities in CPUs, exposing sensitive data risks across multiple Ryzen and EPYC ...
The Hacker News18 小时
Four Arrested in £440M Cyber Attack on Marks & Spencer, Co-op, and Harrods
Four individuals were arrested in connection with £440M cyber attacks on Marks & Spencer, Co-op, and Harrods, linked to the ...
The Hacker News23 小时
What Security Leaders Need to Know About AI Governance for SaaS
U.S. companies are using generative AI, raising concerns about data privacy, compliance, and operational risks.
The Hacker News20 小时
Fake Gaming and AI Firms Push Malware on Cryptocurrency Users via Telegram and Discord
A cryptocurrency social engineering campaign uses fake AI and gaming companies to deliver malware on Windows and macOS, ...
The Hacker News23 小时
New ZuRu Malware Variant Targeting Developers via Trojanized Termius macOS App
The altered app packs in two extra executables within Termius Helper.app, a loader named ".localized" that's designed to ...
The Hacker News1 天
ServiceNow Flaw CVE-2025-3648 Could Lead to Data Exposure via Misconfigured ACLs
ServiceNow's CVE-2025-3648 flaw exposes sensitive data across multiple tables, impacting all users with misconfigured ACLs.
The Hacker News1 天
U.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker Scheme
The IT worker scheme, also tracked as Nickel Tapestry, Wagemole, and UNC5267, involves North Korean actors using a mix of ...
The Hacker News1 天
Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware
Hackers are exploiting Shellter’s leaked Elite license to distribute Lumma Stealer, SectopRAT, and more. This affects ...
The Hacker News1 天
Gold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to Targets
Gold Melody uses ASP.NET vulnerabilities for long-term access, impacting various industries across Europe and the U.S.