News

WinRAR Zero-Day Exploited by Russian-Linked Hackers RomCom and Paper Werewolf

Older WinRAR versions let malicious archives override the user-specified path via crafted archives, enabling stealthy system ...
latesthackingnews.com6d

WinRAR Fixed A Zero-Day Flaw Exploited By RomCom

The popular file archiving tool WinRAR had a serious zero-day vulnerability threatening systems with code execution attacks.

WinRAR: Security vulnerability attacked by two different groups

The vulnerability closed in WinRAR 7.13 was attacked independently by two different groups.
The Hacker News1d

PyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain Attacks

PyPI unverified 1,800 emails since June 2025 to block expired-domain attacks, strengthening open-source supply chain security ...
PCMag on MSN4d

Your SSN Is on the Web, AI Is Leaking Data, and Buses Are Getting Hacked: Another Week in Cybersecurity Hell

Microsoft and OpenAI claim the model is highly secure, but that they’re always improving and adding security features and ...

Microsoft’s Patch Tuesday: 100+ Updates Including Azure OpenAI Service, Memory Corruption Flaw

Microsoft patched CVE-2025-50165, an “extremely high-risk” memory corruption flaw in its graphics component that could let ...
The Hacker News4d

Zero Trust + AI: Privacy in the Age of Agentic AI

Because once an agent becomes adaptive and semi-autonomous, privacy isn't just about who has access to the data; it's about ...
SecurityWeek1d

Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities

More than 870 N-able N-central instances have not been patched against CVE-2025-8875 and CVE-2025-8876, two exploited vulnerabilities.