The Hacker News

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

Three LiteLLM flaws let low-privilege users gain admin access and run code, exposing AI keys, secrets, prompts, and responses ...
The Hacker News

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

Microsoft fixed a critical Copilot Enterprise Search flaw that could expose emails, calendars, and indexed files through one ...
The Hacker News

âš¡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...
The Hacker News

Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw

Palo Alto says CVE-2026-0257 is being exploited to bypass PAN-OS GlobalProtect authentication and create unauthorized VPN ...
The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.
The Hacker News

The Onboarding Password Mistake That Creates Unnecessary Risk

Temporary onboarding passwords sent by email or SMS can expose corporate accounts when they are reused, intercepted, or never ...
The Hacker News

Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts

Sniper Dz scams use fake Facebook offers, trusted link pages, and browser notification abuse to trap MENA users in fraud ...
The Hacker News

The Riskiest Alerts No One Triages

Radiant Security explains how AI SOC triages WAF, supply chain, and dark web alerts that traditional SOC tools often miss.
The Hacker News

152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic

Researchers found 152 Chrome extensions with 105,000 installs tied to adware, data collection, and fake Google organic traffic.
The Hacker News

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Proofpoint says UNK_DeadDrop sent 250+ phishing emails to nearly 100 firms, using GitHub and VS Code lures to steal ...
The Hacker News

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

Google says UNC6508 used REDCap backdoors and Workspace rules to copy research and defense emails across U.S. and Canadian ...
The Hacker News

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk issued security updates for a critical CVSS 9.8 vulnerability in Splunk Enterprise that allows unauthenticated remote ...