Author: PulauWin

The Hacker News

Redefining Cyber Value: Why Business Impact Should Lead the Security Conversation

June 12, 2025 add comment
Security teams face growing demands with more tools, more data, and higher expectations than ever. Boards approve large security budgets, yet still ask the same question: what is the... Read more »
Internet Security

Paragon Graphite Spyware used a zero-day exploit to hack at least two journalists’ iPhones

June 12, 2025 add comment
Security researchers at Citizen Lab revealed that Paragon’s Graphite spyware can hack fully updated iPhones via zero-click attacks. Citizen Lab has confirmed that Paragon’s Graphite spyware was used to... Read more »
Help Net Security

Researchers warn of ongoing Entra ID account takeover campaign

June 12, 2025 add comment
Attackers are using the TeamFiltration pentesting framework to brute-force their way into Microsoft Entra ID (formerly Azure AD) accounts, Proofpoint researchers have discovered. “Proofpoint’s research indicates that while simulated... Read more »
Help Net Security

LockBit panel data leak shows Chinese orgs among the most targeted

June 12, 2025 add comment
The LockBit ransomware-as-a-service (RaaS) operation has netted around $2.3 million USD within 5 months, the data leak stemming from the May 2025 hack of a LockBit affiliate panel has... Read more »
Help Net Security

Tamnoon helps organizations reduce cloud security exposures

June 12, 2025 add comment
Tamnoon launched Managed CDR (Cloud Detection and Response), a managed service designed to validate, contextualize, and respond to cloud security alerts. Built on AWS and launching with Wiz Defend,... Read more »
Help Net Security

Identifying high-risk APIs across thousands of code repositories

June 12, 2025 add comment
In this Help Net Security interview, Joni Klippert, CEO of StackHawk, discusses why API visibility is a major blind spot for security teams, how legacy tools fall short, and... Read more »
The Hacker News

New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally

June 12, 2025 add comment
Cybersecurity researchers have flagged a supply chain attack targeting over a dozen packages associated with GlueStack to deliver malware. The malware, introduced via a change to “lib/commonjs/index.js,” allows an... Read more »
Internet Security

SinoTrack GPS device flaws allow remote vehicle control and location tracking

June 12, 2025 add comment
Two vulnerabilities in SinoTrack GPS devices can allow remote vehicle control and location tracking by attackers, US CISA warns. U.S. CISA warns of two vulnerabilities in SinoTrack GPS devices... Read more »
Internet Security

U.S. CISA adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog

June 12, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added ASUS RT-AX55 devices,... Read more »
Internet Security

Exposed eyes: 40,000 security cameras vulnerable to remote hacking

June 12, 2025 add comment
Over 40,000 internet-exposed security cameras worldwide are vulnerable to remote hacking, posing serious privacy and security risks. Bitsight warns that over 40,000 security cameras worldwide are exposed to remote... Read more »
Subscribe to our Newsletter