The Hacker News9h
Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails
Microsoft warns of a phishing campaign using ClickFix to spread malware via fake Booking.com emails. Attackers exploit fake CAPTCHA pages to steal cre ...
The Hacker News10h
North Korea's ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility Apps
ScarCruft, also called APT27 and Reaper, is a North Korean state-sponsored cyber espionage group active since 2012. Attack ...
The Hacker News12h
GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks
(CVE-2025-25291, CVE-2025-25292) allow SAML authentication bypass (CVSS 8.8). Update to versions 1.12.4 or 1.18.0 now.
The Hacker News13h
WARNING: Expiring Root Certificate May Disable Firefox Add-Ons, Security Features, and DRM Playback
"On March 14, 2025, a root certificate used to verify signed content and add-ons for various Mozilla projects, including ...
The Hacker News14h
Future-Proofing Business Continuity: BCDR Trends and Challenges for 2025
This article shares the latest trends and challenges in backup and disaster recovery by gathering data from over 3,000 IT ...
The Hacker News18h
Meta Warns of FreeType Vulnerability (CVE-2025-27363) With Active Exploitation Risk
A critical FreeType vulnerability (CVE-2025-27363) with a CVSS 8.1 score may be actively exploited—update to 2.13.3 now for ...
The Hacker News20h
URGENT: Microsoft Patches 57 Security Flaws, Including 6 Actively Exploited Zero-Days
Microsoft fixes 57 security flaws, including six zero-days exploited in the wild. CISA mandates patches by April 1.