News

The Hacker News1h
OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation
A critical OttoKit plugin flaw CVE-2025-3102 exploited within hours lets attackers create admin accounts unchecked.
The Hacker News16h
Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses
Malicious npm package pdf-to-office trojanizes Atomic Wallet, Exodus apps to steal crypto funds, persisting after deletion.
The Hacker News16h
Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open to Container Escapes
Incomplete fix for CVE-2024-0132 in NVIDIA Toolkit leaves Linux Docker hosts vulnerable to container escapes and DoS attacks.
The Hacker News19h
PlayPraetor Reloaded: CTM360 Uncovers a Play Masquerading Party
PlayPraetor expands to 16,000+ URLs with five new Android malware variants, posing global threats to financial sectors.
The Hacker News19h
Gamaredon Uses Infected Removable Drives to Breach Western Military Mission in Ukraine
Gamaredon breached a Western military mission on Feb 26, 2025, using upgraded GammaSteel malware and new obfuscation tactics.
The Hacker News23h
AkiraBot Targets 420,000 Sites with OpenAI-Generated Spam, Bypassing CAPTCHA Protections
Cybersecurity researchers have disclosed details of an artificial intelligence (AI) powered platform called AkiraBot that's ...
The Hacker News1d
Microsoft Patches 125 Flaws Including Actively Exploited Windows CLFS Vulnerability
Microsoft patched 126 vulnerabilities including actively exploited CVE-2025-29824, leaving Windows 10 users exposed.