Threat Actors Allegedly Selling macOS 0-day LPE Exploit on Hacker Forums
A threat actor known as "skart7" is allegedly offering a zero-day Local Privilege Escalation (LPE) exploit targeting Apple's macOS operating system for sale on...
High School Dropout Sentenced to 20 Years for $38M Retirement Fund Hack
Evan Frederick Light, a 22-year-old from Lebanon, Indiana, has been sentenced to 20 years in federal prison for orchestrating a sophisticated cyber intrusion that...
Microsoft Edge Vulnerabilities Let Attackers Execute Remote Code – Update Now!
Microsoft has released a critical security update for its Edge browser, addressing multiple vulnerabilities that could allow attackers to execute remote code and compromise...
Parrot 6.3 Released With Improved Security & New Hacking Tools
ParrotOS, the cybersecurity-focused Linux distribution, has recently released its latest update, Parrot 6.3, which includes a number of new features, performance improvements, and updated...
phpMyAdmin Vulnerability Let Hackers Trigger XSS Attack With Malicious Tables
A moderate-severity Cross-Site Scripting (XSS) vulnerability has been identified in phpMyAdmin, a widely used open-source tool for managing MySQL databases.
This flaw, tracked as CVE-2025-24530,...
GhostGPT – New AI Black Hat Tool Used by Hackers to Generative Malware &...
The development of generative AI offered both opportunities for beneficial productivity transformation and opportunities for malicious exploitation.
GhostGPT, an uncensored AI chatbot created specifically for...
New Cookie Sandwich Technique Let Attackers Bypass HttpOnly Flag On Servers
A newly discovered attack technique, dubbed the "cookie sandwich," enables attackers to bypass the HttpOnly flag on certain servers, exposing sensitive cookies, including session...
China Hackers Compromised VPN Service Provider in Supply-Chain Attack
A sophisticated supply-chain attack targeting a South Korean VPN provider. The attack has been attributed to a previously undisclosed China-aligned Advanced Persistent Threat (APT)...
Record-breaking 5.6 Tbps DDoS Attack From 13,000 Mirai Hacked Devices
Cloudflare recently thwarted the largest distributed denial-of-service (DDoS) attack ever recorded, peaking at an unprecedented 5.6 terabits per second (Tbps).
The attack, which occurred...
50,000 Fortinet Firewalls Remain Vulnerable to Critical Zero-Day Exploit
As of January 22, 2025, nearly 50,000 Fortinet firewall devices remain exposed to a critical zero-day vulnerability (CVE-2024-55591) despite urgent warnings and available patches.
The...