The Hacker News

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

CISA adds an actively exploited SolarWinds Web Help Desk RCE flaw to KEV, ordering federal agencies to patch by February 2026.

How to test OpenClaw without giving an autonomous agent shell access to your corporate laptop

OpenClaw jumped from 1,000 to 21,000 exposed deployments in a week. Here's how to evaluate it in Cloudflare's Moltworker ...

These 4 critical AI vulnerabilities are being exploited faster than defenders can respond

These 4 critical AI vulnerabilities are being exploited faster than defenders can respond ...
Microsoft

Analysis of active exploitation of SolarWinds Web Help Desk

We are seeing exploitation of SolarWinds Web Help Desk via CVE‑2025‑40551 and CVE‑2025‑40536 that can lead to domain ...

EDR, Email, and SASE Miss This Entire Class of Browser Attacks

Many modern attacks happen entirely inside the browser, leaving little evidence for traditional security tools. Keep Aware shows why EDR, email, and SASE miss browser-only attacks and how visibility ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...
Tech Xplore

Smarter machine-learning models can improve phishing website detection

Phishing websites remain a persistent cybersecurity threat, exploiting users by imitating trusted online services. New ...

Snail mail letters target Trezor and Ledger users in crypto-theft attacks

Threat actors are sending physical letters pretending to be from Trezor and Ledger, makers of cryptocurrency hardware wallets ...

New Chrome Browser Security Alert — Restart Now, Google Says

If, like some 3 billion others worldwide, you use the Chrome web browser, you need to restart it now following this new Google security alert.

Rs 5k cr illegal online gaming–fintech web unearthed by DGGI in Hyderabad; syndicate created network of shell Cos

Hyderabad's GST intelligence wing has busted a massive Rs 5,000 crore illegal gaming-fintech syndicate. Operating through online platforms and a complex network of shell firms, the group allegedly ...
Redmondmag.com

Microsoft Warns of Active SolarWinds Web Help Desk Exploitation

Microsoft's Defender Security Research Team has observed threat actors actively exploiting internet-exposed SolarWinds Web Help Desk instances in multi-stage intrusions that led to lateral movement ...