The Hacker News1h
Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails
Microsoft warns of a phishing campaign using ClickFix to spread malware via fake Booking.com emails. Attackers exploit fake CAPTCHA pages to steal cre ...
The Hacker News2h
North Korea's ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility Apps
ScarCruft, also called APT27 and Reaper, is a North Korean state-sponsored cyber espionage group active since 2012. Attack ...
The Hacker News4h
GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks
(CVE-2025-25291, CVE-2025-25292) allow SAML authentication bypass (CVSS 8.8). Update to versions 1.12.4 or 1.18.0 now.
The Hacker News6h
Future-Proofing Business Continuity: BCDR Trends and Challenges for 2025
This article shares the latest trends and challenges in backup and disaster recovery by gathering data from over 3,000 IT ...
The Hacker News9h
Meta Warns of FreeType Vulnerability (CVE-2025-27363) With Active Exploitation Risk
A critical FreeType vulnerability (CVE-2025-27363) with a CVSS 8.1 score may be actively exploited—update to 2.13.3 now for ...
The Hacker News9h
WARNING: Expiring Root Certificate May Disable Firefox Add-Ons, Security Features, and DRM Playback
"On March 14, 2025, a root certificate used to verify signed content and add-ons for various Mozilla projects, including ...