info@thehackernews.com The Hacker News, Author at Secure IT

Amazon EC2 SSM Agent Flaw Patched After Privilege Escalation via Path Traversal

Amazon EC2 SSM Agent Flaw Patched After Privilege Escalation via Path Traversal

[email protected] The Hacker News April 8, 2025

Apr 08, 2025Ravie LakshmananCloud Security / Vulnerability Cybersecurity researchers have disclosed details of a now-patched security flaw...

Cryptocurrency Miner and Clipper Malware Spread via SourceForge Cracked Software Listings

[email protected] The Hacker News April 8, 2025

Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge,...

Agentic AI in the SOC – Dawn of Autonomous Alert Triage

[email protected] The Hacker News April 8, 2025

Security Operations Centers (SOCs) today face unprecedented alert volumes and increasingly sophisticated threats. Triaging and investigating these...

UAC-0226 Deploys GIFTEDCROOK Stealer via Malicious Excel Files Targeting Ukraine

[email protected] The Hacker News April 8, 2025

The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed a new set of cyber attacks targeting...

CISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active Exploitation

[email protected] The Hacker News April 8, 2025

Apr 08, 2025Ravie LakshmananCyber Attack / Vulnerability A recently disclosed critical security flaw impacting CrushFTP has been...

Google Releases Android Update to Patch Two Actively Exploited Vulnerabilities

[email protected] The Hacker News April 8, 2025

Apr 08, 2025Ravie LakshmananMobile Security / Vulnerability Google has shipped patches for 62 vulnerabilities, two of which...

CISA and FBI Warn Fast Flux is Powering Resilient Malware, C2, and Phishing Networks

[email protected] The Hacker News April 7, 2025

Apr 07, 2025Ravie LakshmananMalware / Network Security Cybersecurity agencies from Australia, Canada, New Zealand, and the United...

⚡ Weekly Recap: VPN Exploits, Oracle’s Silent Breach, ClickFix Comeback and More

[email protected] The Hacker News April 7, 2025

Apr 07, 2025Ravie LakshmananThreat Intelligence / Cybersecurity Today, every unpatched system, leaked password, and overlooked plugin is...

Security Theater: Vanity Metrics Keep You Busy – and Exposed

[email protected] The Hacker News April 7, 2025

Apr 07, 2025The Hacker NewsAttack Surface Management After more than 25 years of mitigating risks, ensuring compliance,...

PoisonSeed Exploits CRM Accounts to Launch Cryptocurrency Seed Phrase Poisoning Attacks

[email protected] The Hacker News April 7, 2025

Apr 07, 2025Ravie LakshmananCloud Security / Cryptocurrency A malicious campaign dubbed PoisonSeed is leveraging compromised credentials associated...

[email protected] The Hacker News

Amazon EC2 SSM Agent Flaw Patched After Privilege Escalation via Path Traversal

Cryptocurrency Miner and Clipper Malware Spread via SourceForge Cracked Software Listings

Agentic AI in the SOC – Dawn of Autonomous Alert Triage

UAC-0226 Deploys GIFTEDCROOK Stealer via Malicious Excel Files Targeting Ukraine

CISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active Exploitation

Google Releases Android Update to Patch Two Actively Exploited Vulnerabilities

CISA and FBI Warn Fast Flux is Powering Resilient Malware, C2, and Phishing Networks

⚡ Weekly Recap: VPN Exploits, Oracle’s Silent Breach, ClickFix Comeback and More

Security Theater: Vanity Metrics Keep You Busy – and Exposed

PoisonSeed Exploits CRM Accounts to Launch Cryptocurrency Seed Phrase Poisoning Attacks

You may have missed

$13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul