The Hacker News

Webinar: How Attackers Exploit Cloud Misconfigurations Across AWS, AI Models, and Kubernetes

Live briefing shows how attackers exploit AWS identity errors, AI model masking, and Kubernetes privileges—and how teams can ...
ZDNet

Microsoft fixes SharePoint zero-day exploits used in cyberattacks and ransomware - how to patch them

Microsoft has patched three critical zero-day SharePoint security flaws that hackers have already exploited to attack more vulnerable organizations. Responding to the exploits, the software giant ...
Ars Technica

Commercial spyware vendor exploits used by Kremlin-backed hackers, Google says

Critics of spyware and exploit sellers have long warned that the advanced hacking sold by commercial surveillance vendors (CSVs) represents a worldwide danger because they inevitably find their way ...
CSOonline

CISOs advised to rethink vulnerability management as exploits sharply rise

Surge in vulnerabilities and exploits leaving overloaded security teams with little recourse but to embrace risk-based approaches to patching what they can. Enterprise attack surfaces continue to ...
Bleeping Computer

Hackers targeting WhatsUp Gold with public exploit since August

Hackers have been leveraging publicly available exploit code for two critical vulnerabilities in the WhatsUp Gold network availability and performance monitoring solution from Progress Software. The ...
CoinTelegraph

Trader loses $21M on Hyperliquid after private key leak: How to be protected

On Thursday, a single user on the decentralized trading platform Hyperliquid lost about $21 million after a private key leak led to an exploit involving the platform’s Hyperdrive lending protocol.
CoinTelegraph

Crypto hack losses down 37% in Q3 as tactics shift to wallets

Crypto hack losses dropped 37% in Q3 to $509 million, but September saw a record surge in million-dollar incidents, led by exchange and DeFi exploits. Total funds lost to crypto hacks and exploits ...