The Hacker News

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

ServiceNow fixed CVE-2025-12420, a critical flaw that let unauthenticated attackers impersonate users on its AI Platform.
CSO Online

Iran-linked MuddyWater APT deploys Rust-based implant in latest campaign

Iran-linked advanced persistent threat group MuddyWater has deployed a Rust-based implant in an ongoing espionage campaign ...

Covenant Health data breach affects nearly 500,000 patients

Covenant Health detected a cyberattack May 26, 2025, but attackers accessed patient information starting May 18, prompting ...

BreachForums hacking forum database leaked, exposing 324,000 accounts

The latest incarnation of the notorious BreachForums hacking forum has suffered a data breach, with its user database table ...
CSO Online

ZombieAgent ChatGPT attack shows persistent data leak risks of AI agents

Security researchers from Radware have demonstrated techniques to exploit ChatGPT connections to third-party apps to turn ...

Cyber Incidents and Attacks Disrupt Enterprise Business Operations for Two Weeks, Reveals First Comprehensive Global Cyber Resilience Survey

Absolute Security today published the industry's first comprehensive research revealing the state of enterprise Cyber Resilience. Among the top findings were that when hit with cy ...
Krebs on Security

Who Benefited from the Aisuru and Kimwolf Botnets?

Forky asserts that Dort is a resident of Canada and one of at least two individuals currently in control of the ...

New China-linked hackers breach telcos using edge device exploits

A sophisticated threat actor that uses Linux-based malware to target telecommunications providers has recently broadened its ...
GitHub

AI-Powered Web Application Penetration Testing Tool

HackTheWeb is a production-ready, AI-powered web application penetration testing tool designed for security professionals and ethical hackers. It uses rule-based artificial intelligence (no external ...