The Hacker News

New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands

Critical n8n flaw CVE-2025-68668 allows authenticated users to run system commands via workflows; affects versions 1.0.0 to ...

Windows Users at Risk as Critical Zoom Vulnerability Exploited

A critical Zoom vulnerability put Windows users at risk of data theft and system compromise. Zoom has patched the flaw. Users ...
The Hacker News

Unpatched Firmware Flaw Exposes TOTOLINK EX200 to Full Remote Device Takeover

CERT/CC warns an unpatched TOTOLINK EX200 firmware flaw lets authenticated attackers enable unauthenticated root telnet and ...
Communications of the ACM

Exposing Common Vulnerabilities

Common vulnerabilities and exposures (CVEs) include all types of subversive entry-points discovered in programs, along with a ...
PCMag

Hackers Love Windows 10. Do This One Thing to Keep Them Out

With Windows 10 no longer receiving support, it has become an easy target for hackers. That doesn't mean you have to upgrade ...

ClickFix attack uses fake Windows BSOD screens to push malware

A new ClickFix social engineering campaign is targeting the hospitality sector in Europe, using fake Windows Blue Screen of ...
InfoWorld

Open WebUI bug turns the ‘free model’ into an enterprise backdoor

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...

software vulnerabilities

A critical Zoom vulnerability put Windows users at risk of data theft and system compromise. Zoom has patched the flaw. Users should update immediately.

Cloud file-sharing sites targeted for corporate data theft attacks

A threat actor known as Zestix has been offering to corporate data stolen from dozens of companies likely after breaching ...