HackenPost blogs - Page 97 of 111

Data Breaches

SysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise Version

Cybersecurity researchers have disclosed multiple security flaw in the on-premise version of SysAid IT support software that could…

May 7, 2025

Data Breaches

Reevaluating SSEs: A Technical Gap Analysis of Last-Mile Protection

Security Service Edge (SSE) platforms have become the go-to architecture for securing hybrid work and SaaS access. They…

May 7, 2025

Data Breaches

Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization

Threat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows…

May 7, 2025

Data Breaches

Hackers Exploit Samsung MagicINFO, GeoVision IoT Flaws to Deploy Mirai Botnet

Threat actors have been observed actively exploiting security flaws in GeoVision end-of-life (EoL) Internet of Things (IoT) devices…

May 6, 2025

Data Breaches

New Investment Scams Use Facebook Ads, RDGA Domains, and IP Checks to Filter Victims

Cybersecurity researchers have lifted the lid on two threat actors that orchestrate investment scams through spoofed celebrity endorsements…

May 6, 2025

Data Breaches

Third Parties and Machine Credentials: The Silent Drivers Behind 2025’s Worst Breaches

It wasn’t ransomware headlines or zero-day exploits that stood out most in this year’s Verizon 2025 Data Breach…

May 6, 2025

Data Breaches

Microsoft Warns Default Helm Charts Could Leave Kubernetes Apps Exposed to Data Leaks

Microsoft has warned that using pre-made templates, such as out-of-the-box Helm charts, during Kubernetes deployments could open the…

May 6, 2025

Data Breaches

Entra ID Data Protection: Essential or Overkill?

Microsoft Entra ID (formerly Azure Active Directory) is the backbone of modern identity management, enabling secure access to…

May 6, 2025

Data Breaches

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Cybersecurity researchers have disclosed a series of now-patched security vulnerabilities in Apple’s AirPlay protocol that, if successfully exploited,…

May 5, 2025

Data Breaches

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a maximum-severity security flaw impacting Commvault Command Center…

May 5, 2025

Hand-Picked Top-Read Stories

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

Trending Tags

SysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise Version

Reevaluating SSEs: A Technical Gap Analysis of Last-Mile Protection

Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization

Hackers Exploit Samsung MagicINFO, GeoVision IoT Flaws to Deploy Mirai Botnet

New Investment Scams Use Facebook Ads, RDGA Domains, and IP Checks to Filter Victims

Third Parties and Machine Credentials: The Silent Drivers Behind 2025’s Worst Breaches

Microsoft Warns Default Helm Charts Could Leave Kubernetes Apps Exposed to Data Leaks

Entra ID Data Protection: Essential or Overkill?

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories

Microsoft Warns of Two Actively Exploited Defender Vulnerabilities

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers