CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV on November 30, 2025 Posted by The Hacker News
Friday Squid Blogging: Flying Neon Squid Found on Israeli Beach on November 28, 2025 Posted by Bruce Schneier
Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages on November 28, 2025 Posted by The Hacker News
North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware on November 28, 2025 Posted by The Hacker News
Posted in Hacking news New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices on November 20, 2025 The Hacker News
Posted in Hacking news Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt on November 20, 2025 The Hacker News
Posted in Hacking news TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign on November 19, 2025 The Hacker News
Posted in Hacking news Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) on November 19, 2025 The Hacker News
Posted in Hacking news Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices on November 19, 2025 The Hacker News
Posted in Hacking news WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide on November 19, 2025 The Hacker News
Posted in Hacking news Application Containment: How to Use Ringfencing to Prevent the Weaponization of Trusted Software on November 19, 2025 The Hacker News
Posted in Hacking news EdgeStepper Implant Reroutes DNS Queries to Deploy Malware via Hijacked Software Updates on November 19, 2025 The Hacker News
Posted in Hacking news ServiceNow AI Agents Can Be Tricked Into Acting Against Each Other via Second-Order Prompts on November 19, 2025 The Hacker News
Posted in Hacking news Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild on November 18, 2025 The Hacker News
