CRN

Is The Metasploit Hacking Tool Too Good?

Next month, Moore will raise the already-high stakes when Metasploit releases a new piece of code--called eVade-o-Matic--that makes it harder for intrusion-detection systems and antivirus software to ...

Cisco warns of Identity Service Engine flaw with exploit code

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin ...
Microsoft

Phishing actors exploit complex routing and misconfigurations to spoof domains

Threat actors are exploiting complex routing scenarios and misconfigured spoof protections to send spoofed phishing emails, ...
Infosecurity Magazine

Phishing Attacks Exploit Misconfigured Email Routing Settings to Target Microsoft 365 Users

“Successful credential compromise through phishing attacks may lead to data theft or business email compromise (BEC) attacks ...

New China-linked hackers breach telcos using edge device exploits

A sophisticated threat actor that uses Linux-based malware to target telecommunications providers has recently broadened its ...
The Hacker News

Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations

Russian-linked APT28 ran credential-harvesting attacks in 2025 using fake Microsoft, Google, and VPN login pages, PDF lures, ...
Infosecurity Magazine

GoBruteforcer Botnet Targets Linux Servers

A botnet known as GoBruteforcer has been actively targeting Linux servers exposed to the internet, using large-scale ...
CSO Online

CISA flags max-severity bug in HPE OneView amid active exploitation

The flaw allows remote code execution via a public REST API, giving attackers a direct path to compromise enterprise ...
PCMag on MSN

Man Behind $10 Billion Bitfinex Bitcoin Hack Released Early, Thanks Trump’s Crime Act

Ilya Lichtenstein, who had pleaded guilty to attempting to launder 120,000 bitcoin stolen from the Bitfinex crypto exchange ...