In The News

CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices The Hacker [email protected] (The Hacker News)
March 26, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two six-year-old security flaws impacting Sitecore CMS and Experience Platform (XP) to its Known Exploited Vulnerabilities (KEV) catalog, based on …


NetApp SnapCenter Flaw Could Let Users Gain Remote Admin Access on Plug-In Systems The Hacker [email protected] (The Hacker News)
March 26, 2025

A critical security flaw has been disclosed in NetApp SnapCenter that, if successfully exploited, could allow privilege escalation. SnapCenter is an enterprise-focused software that's used to manage data protection across applications, …


New SparrowDoor Backdoor Variants Found in Attacks on U.S. and Mexican Organizations The Hacker [email protected] (The Hacker News)
March 26, 2025

The Chinese threat actor known as FamousSparrow has been linked to a cyber attack targeting a trade group in the United States and a research institute in Mexico to deliver …


EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware The Hacker [email protected] (The Hacker News)
March 26, 2025

The threat actor known as EncryptHub exploited a recently-patched security vulnerability in Microsoft Windows as a zero-day to deliver a wide range of malware families, including backdoors and information stealers …


RedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt Deployment The Hacker [email protected] (The Hacker News)
March 26, 2025

The Russian-speaking hacking group called RedCurl has been linked to a ransomware campaign for the first time, marking a departure in the threat actor's tradecraft. The activity, observed by Romanian cybersecurity …


Malicious npm Package Modifies Local ‘ethers’ Library to Launch Reverse Shell Attacks The Hacker [email protected] (The Hacker News)
March 26, 2025

Cybersecurity researchers have discovered two malicious packages on the npm registry that are designed to infect another locally installed package, underscoring the continued evolution of software supply chain attacks targeting …


Sparring in the Cyber Ring: Using Automated Pentesting to Build Resilience The Hacker [email protected] (The Hacker News)
March 26, 2025

“A boxer derives the greatest advantage from his sparring partner…” — Epictetus, 50–135 AD Hands up. Chin tucked. Knees bent. The bell rings, and both boxers meet in the center …


How PAM Mitigates Insider Threats: Preventing Data Breaches, Privilege Misuse, and More The Hacker [email protected] (The Hacker News)
March 26, 2025

When people think of cybersecurity threats, they often picture external hackers breaking into networks. However, some of the most damaging breaches stem from within organizations. Whether through negligence or malicious …


Hackers Using E-Crime Tool Atlantis AIO for Credential Stuffing on 140+ Platforms The Hacker [email protected] (The Hacker News)
March 26, 2025

Threat actors are leveraging an e-crime tool called Atlantis AIO Multi-Checker to automate credential stuffing attacks, according to findings from Abnormal Security. Atlantis AIO "has emerged as a powerful weapon in …


Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks The Hacker [email protected] (The Hacker News)
March 25, 2025

Google has released out-of-band fixes to address a high-severity security flaw in its Chrome browser for Windows that it said has been exploited in the wild as part of attacks …