HackenPost blogs - Page 25 of 107

Data Breaches

Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work

The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to…

December 12, 2025

Data Breaches

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

The React team has released fixes for two new types of flaws in React Server Components (RSC) that,…

December 12, 2025

Data Breaches

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to patch the recent React2Shell vulnerability…

December 12, 2025

Data Breaches

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting OSGeo GeoServer…

December 12, 2025

Data Breaches

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

This week’s cyber stories show how fast the online world can turn risky. Hackers are sneaking malware into…

December 11, 2025

Data Breaches

NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems

Cybersecurity researchers have disclosed details of a new fully-featured Windows backdoor called NANOREMOTE that uses the Google Drive…

December 11, 2025

Data Breaches

Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

Google on Wednesday shipped security updates for its Chrome browser to address three security flaws, including one it…

December 11, 2025

Data Breaches

Active Attacks Exploit Gladinet’s Hard-Coded Keys for Unauthorized Access and Code Execution

Huntress is warning of a new actively exploited vulnerability in Gladinet’s CentreStack and Triofox products stemming from the…

December 11, 2025

Data Breaches

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

React2Shell continues to witness heavy exploitation, with threat actors leveraging the maximum-severity security flaw in React Server Components…

December 10, 2025

Data Breaches

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

New research has uncovered exploitation primitives in the .NET Framework that could be leveraged against enterprise-grade applications to…

December 10, 2025

Hand-Picked Top-Read Stories

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

Trending Tags

Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

NANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows Systems

Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

Active Attacks Exploit Gladinet’s Hard-Coded Keys for Unauthorized Access and Code Execution

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise