The Hacker News

⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.
The Hacker News

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Cisco Talos links China-based UAT-8099 to IIS server attacks using BadIIS malware for regional SEO fraud, targeting Thailand ...

Leaves Legacy Project Files Patent for AI-Enabled Photo and Video Storage That Understands ...

New narrative-guided media intelligence transforms scattered digital memories into a searchable, story-aware personal ...

TaxZerone Urges U.S. Businesses to File 2025 Information Returns and 94X Forms Ahead of IRS ...

TaxZerone helps businesses file W-2, 1099, and 94X forms accurately and on time for the 2025 tax year. SAN JOSE, CA, ...
CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...
Circuit Digest

DIY Arduino Robotic Arm

The table shows the pin configuration of the Arduino UNO–based robotic arm. The red (VCC) wires of all servos are connected ...

Infostealers added Clawdbot to their target lists before most security teams knew it was ...

RedLine, Lumma, and Vidar adapted in 48 hours. Clawdbot's localhost trust model collapsed, plaintext memory files sit exposed ...
KSL

We tested 4 popular scam-detection apps. Here's what actually worked

Artificial intelligence is creating more convincing scams, with fake emails, cloned voices and spoofed caller IDs. KSL tested ...
Cyber Daily

Open inspection: Real estate leasing platforms at major data leak risk, investigation reveals

New findings have revealed that popular platforms used by real estate agents may be putting millions of files containing personal data at risk of being leaked.

Competition: Win tickets to Mother's stunning Imbolc bank holiday party

Mother opens its doors on Bank Holiday Sunday 2026 to mark Imbolc, an ancient festival celebrating the turning of the season, ...
Cyber Daily

Hacked: US cyber agency adds 6 vulnerabilities to known-exploited listing

A Microsoft zero-day vulnerability has been added to the KEV catalogue alongside a SmarterTools SmarterMail authentication bypass bug and a Broadcom RCE flaw.