LayerX today announced the release of the Enterprise Browser Extension Security Report 2025, This report is the first and only report to merge public extension marketplace statistics with real-world ...

The disclosure comes weeks after another critical vulnerability was disclosed in Apache Parquet's Java Library ( CVE-2025-30065, CVSS score: 10.0) that, if successfully exploited, could allow a remote ...

Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that's designed to reroute trading orders placed on the MEXC cryptocurrency exchange ...

Slow Pisces has a history of targeting developers, typically in the cryptocurrency sector, by approaching them on LinkedIn as part of a supposed job opportunity and enticing them into opening a PDF ...

It has been addressed in CentreStack version 16.4.10315.56368 released on April 3, 2025. The vulnerability is said to have been exploited as a zero-day in March 2025, although the exact nature of the ...

Meta has announced that it will begin to train its artificial intelligence (AI) models using public data shared by adults across its platforms in the European Union, nearly a year after it paused its ...

ResolverRAT targets healthcare and pharma via localized phishing; uses advanced stealth tactics to ensure persistence and ...

Precision-validating phishing filters verified emails via real-time checks, boosting credential theft success and evading ...

SideCopy hackers adopt MSI staging and launch CurlBack RAT attacks on Indian ministries, oil, and rail sectors.

Organizations are beginning to integrate AI into security workflows, from digital forensics to vulnerability assessments and ...

Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and ...

A critical OttoKit plugin flaw CVE-2025-3102 exploited within hours lets attackers create admin accounts unchecked.